W3C home > Mailing lists > Public > public-web-bluetooth@w3.org > April 2016

Re: Integration with the Permissions API

From: Jeffrey Yasskin <jyasskin@google.com>
Date: Tue, 19 Apr 2016 16:08:32 -0700
Message-ID: <CANh-dXkOnvfNkzPh8Mw3AbWtzhMUdVYgEnOj03nZ4+BfkcWxYA@mail.gmail.com>
To: public-web-bluetooth <public-web-bluetooth@w3.org>
https://rawgit.com/jyasskin/web-bluetooth-1/permission-api/index.html#permission-api-integration
now has some examples of using the API, and
https://rawgit.com/jyasskin/web-bluetooth-1/permission-api/index.html#server-takeovers
describes the risk of a persistent device grant being used by an
attacker. Let me know if you want to see any other examples or have
other comments.

Thanks,
Jeffrey

On Fri, Apr 15, 2016 at 11:19 AM, Jeffrey Yasskin <jyasskin@google.com> wrote:
> I've uploaded https://github.com/WebBluetoothCG/web-bluetooth/pull/228
> to integrate Web Bluetooth into the navigator.permissions interface,
> which will allow folks to call navigator.permissions.query({filters:
> [...]}) to retrieve the devices they've already been granted access
> to.
>
> I'm now realizing that I need to add some example code and a mention
> of the increased XSS risk, but it's ready for you folks to take a look
> and see if you have any suggestions:
> https://rawgit.com/jyasskin/web-bluetooth-1/permission-api/index.html#permission-api-integration
>
> Thanks,
> Jeffrey
Received on Tuesday, 19 April 2016 23:09:19 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 19 April 2016 23:09:20 UTC