[mediacapture-fromelement] Deny captureStream for cross-origin media by default from Jun via GitHub on 2018-02-16 (public-media-capture-logs@w3.org from February 2018)

From: Jun via GitHub <sysbot+gh@w3.org>
Date: Fri, 16 Feb 2018 23:03:59 +0000
To: public-media-capture-logs@w3.org
Message-ID: <issues.opened-297946874-1518822236-sysbot+gh@w3.org>

shhnjk has just created a new issue for https://github.com/w3c/mediacapture-fromelement:

== Deny captureStream for cross-origin media by default ==
Per spec, it is allows to captureStream() cross-origin media contents. But I don't see much benefit from it, instead, there are many risks. Media related APIs are growing and it's complicated for browsers to allow captureStream of cross-origin media yet deny leaking information. Stream can be passed from video <-> canvas, or to WebRTC peer, etc.

Chrome denies to captureStream for cross-origin media contents today. Where Firefox allows it. 
I think we should stick to Chrome's behavior and change the spec.

Test
[https://test.shhnjk.com/whycapture.html](https://test.shhnjk.com/whycapture.html)

Please view or discuss this issue at https://github.com/w3c/mediacapture-fromelement/issues/70 using your GitHub account

Received on Friday, 16 February 2018 23:04:01 UTC