- From: Martin Thomson <martin.thomson@gmail.com>
- Date: Wed, 5 Jun 2013 17:14:40 -0700
- To: Jim Barnett <Jim.Barnett@genesyslab.com>
- Cc: Stefan HÃ¥kansson LK <stefan.lk.hakansson@ericsson.com>, "Robert O'Callahan" <robert@ocallahan.org>, Adam Bergkvist <adam.bergkvist@ericsson.com>, "public-media-capture@w3.org" <public-media-capture@w3.org>
On 5 June 2013 16:04, Jim Barnett <Jim.Barnett@genesyslab.com> wrote: > are we sure that equal origin (= full access) should be the default? Personally, I'm not sure, but my assessment of consensus is that the current default is what people prefer. That isn't consistent with safe-by-default, but it's hard to make peerIdentity a default, so the only viable choice I see is between site-accessible and noaccess. I'm not sure how noaccess is useful in anything other than WebRTC scenarios, so it would be difficult to justify making it the default. > Could a user set a different default? The user can be informed of the constraints when granting permission and can choose to deny or allow. Cranking the restrictions up doesn't make sense.
Received on Thursday, 6 June 2013 00:15:11 UTC