- From: Fabrice Desre <fabrice@mozilla.com>
- Date: Wed, 27 Mar 2013 08:55:42 -0700
- To: John Lyle <john.lyle@cs.ox.ac.uk>
- CC: Jonas Sicking <jonas@sicking.cc>, Norifumi Kikkawa <Norifumi.Kikkawa@jp.sony.com>, "public-sysapps@w3.org" <public-sysapps@w3.org>
On 03/27/2013 08:28 AM, John Lyle wrote: > > Thanks very much for the pointer and explanation. This makes more > sense. Out of curiosity, is this 'permissions table' intended to remain > hard-coded in Firefox OS source code, or do you anticipate any > customisation / adaptation by users or other stakeholders? It's part of the source for now, so it's not tweakable without rebuilding. I'm sure our security people will not like it if I moved this table to some config file ;) > To return to Norifumi's question, it sounds like 'apps' (which are > roughly as privileged as websites) can be installed from anywhere, but > 'privileged apps' (which are able to access cameras, contacts, etc) can > only be installed from an app store that the user agent has a trusted > certificate for, and the process for installing new privileged app > stores is likely to remain outside of this specification. Is that a > fair assessment? Yes, that's correct. For instance, people that review and test applications before they are publicly available in the mozilla store do so by installing apps signed with another certificate that is installed on their devices. Fabrice -- Fabrice Desré b2g team Mozilla Corporation
Received on Wednesday, 27 March 2013 15:56:13 UTC