- From: Matt Giuca <notifications@github.com>
- Date: Sun, 15 Dec 2019 22:03:12 -0800
- To: w3c/manifest <manifest@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3c/manifest/issues/835/565918230@github.com>
> But those permissions are directly associated with the action user is attempting to take (e.g. join a video conference) That depends on the site. A "good" site will have a "join video conference" button which asks for cam permission and thus it's obvious to the user from context why it's asking for permission. Just as a "good" site will have an "install me" button which calls `BIPE.prompt()`* and thus it's obvious to the user from context why the UA is prompting to install. Of course, there can be a "bad" site that asks for cam permission with no apparent context, at which point a savvy user might say no, or a naive user who just wants to click through everything might say yes. Similarly, a "bad" site could ask for install with no apparent context, at which point the same user might say no or yes. Basically the same argument being applied here applies to all of the other APIs that ask for permission. \*only if pre-allowed by the user agent; again, BIP leaves much more control in the hands of the user agent than permission prompt APIs > and the permission granted won’t persist once the browser exits Ah I see. I didn't realise Safari revoked all permissions at shutdown. That is an important difference. But since installation shouldn't be granting any permissions, it shouldn't matter (see [Controlling Access to Powerful Web Platform Features](https://chromium.googlesource.com/chromium/src/+/lkgr/docs/security/permissions-for-powerful-web-platform-features.md)). -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/manifest/issues/835#issuecomment-565918230
Received on Monday, 16 December 2019 06:03:14 UTC