- From: Jeffrey Yasskin <jyasskin@google.com>
- Date: Tue, 19 Apr 2016 16:08:32 -0700
- To: public-web-bluetooth <public-web-bluetooth@w3.org>
https://rawgit.com/jyasskin/web-bluetooth-1/permission-api/index.html#permission-api-integration
now has some examples of using the API, and
https://rawgit.com/jyasskin/web-bluetooth-1/permission-api/index.html#server-takeovers
describes the risk of a persistent device grant being used by an
attacker. Let me know if you want to see any other examples or have
other comments.
Thanks,
Jeffrey
On Fri, Apr 15, 2016 at 11:19 AM, Jeffrey Yasskin <jyasskin@google.com> wrote:
> I've uploaded https://github.com/WebBluetoothCG/web-bluetooth/pull/228
> to integrate Web Bluetooth into the navigator.permissions interface,
> which will allow folks to call navigator.permissions.query({filters:
> [...]}) to retrieve the devices they've already been granted access
> to.
>
> I'm now realizing that I need to add some example code and a mention
> of the increased XSS risk, but it's ready for you folks to take a look
> and see if you have any suggestions:
> https://rawgit.com/jyasskin/web-bluetooth-1/permission-api/index.html#permission-api-integration
>
> Thanks,
> Jeffrey
Received on Tuesday, 19 April 2016 23:09:19 UTC