Re: [web-bluetooth] AdvertisingEvent objects may contain service UUIDs that the site has not explicitly requested permission for. (#499) from Ovidio Ruiz-Henríquez via GitHub on 2020-06-01 (public-web-bluetooth-log@w3.org from June 2020)

From: Ovidio Ruiz-Henríquez via GitHub <sysbot+gh@w3.org>
Date: Mon, 01 Jun 2020 22:49:00 +0000
To: public-web-bluetooth-log@w3.org
Message-ID: <issue_comment.created-637165721-1591051739-sysbot+gh@w3.org>

Yes, it doesn't align with how we handle service permissions elsewhere. For example, in `getPrimaryServices()`, services that are not allowed are [excluded](https://webbluetoothcg.github.io/web-bluetooth/#dom-bluetoothremotegattserver-getprimaryservices).

Regarding manufacturer and service data, these are also included in the request device filters, but they aren't really used anywhere else besides advertising events. Should these also be filtered out of AdvertisingEvents if they weren't included in the request device options?

-- 
GitHub Notification of comment by odejesush
Please view or discuss this issue at https://github.com/WebBluetoothCG/web-bluetooth/issues/499#issuecomment-637165721 using your GitHub account

Received on Monday, 1 June 2020 22:49:01 UTC