Re: [w3c/webpayments] [Payment Request] Should we allow a "polling" mechanism for websites to not invoke the API if there are no enabled methods (#159) from Tommy Thorsen on 2016-07-18 (public-payments-wg@w3.org from July 2016)

From: Tommy Thorsen <notifications@github.com>
Date: Mon, 18 Jul 2016 02:23:01 -0700
To: w3c/webpayments <webpayments@noreply.github.com>
Cc: webpayments <public-payments-wg@w3.org>, Comment <comment@noreply.github.com>
Message-ID: <w3c/webpayments/issues/159/233282418@github.com>

I think a polling mechanism is a good idea, but the browser needs to get the user's consent before handing this information over to the merchant (just like when asking permission for a web site to use the location api for instance).

This means that when the merchant calls the polling function, a dialog will be displayed saying something like "The website 'abcmerchant.com' wants to access your payment apps. Allow / Deny".

I'm not sure whether this should be a permission to use the entire payments api, or just the polling function. A permission for the entire payments api might be the better choice.

---
You are receiving this because you commented.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/webpayments/issues/159#issuecomment-233282418

Received on Monday, 18 July 2016 09:23:30 UTC