New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Security - What features will be shut down? #155
Comments
Hi! Thanks for the feedback and your questions!
|
Well, I love the ability to communicate with the host win32 app. Whatever the browser is not capable of can be implemented at that level. Using the messaging system to pass commands and data back and forth. However, I thought that browsers are required to be completely sandboxed. Currently I have a problem where a page served from https:// needs to connect locally to a ws:// endpoint which is no longer allowed for security reasons. By building a http:// server into my win32 app (Or as I just realised hooking into the ICoreWebView2WebResourceRequest ) WebView2 will quite happily establish the ws:// connection. If these are security loopholes I rather find out now then have my application break in 6 months. [edit:] |
Hey @dinther, sorry for the delay. Here are resources on distributing the runtime, and we're working on sample code as well: I'm going to close this issue as it's a bit old now and I believe most of the questions have been answered. If you have another question or bug please open a new issue. Thanks! |
As a new WebView2 user, I am absolutely thrilled with WebView2 and I have been able to access it in Lazarus/Free Pascal without any trouble.
Being an ex win32 developer and currently frustrated web developer I love it that I am getting some sense of control again over the environment I am working in and don't have to suffer "You can't do this inside a browser". Also the trudging in the ever changing environment swap looks like it might be resolved somewhat. At least now know what browser engine my web code will be running on. Hurry up with the Linux version though.
Microsoft might prefer developers to use the "evergreen" version of WebView2 but personally I can't wait to have the "bring your own" option. Standards on the web change way too fast and too much code breaks because of it. My 23 year Delphi code based on win32 api still runs today! Try that with a web app.
Q1:
For example, in a browser, timers and requestAnimationFrame stop when it is minimized. As a result my PWA program stopped doing it's job when minimized and the main reason I am turning my back to PWA. Thankfully in WebView2 this loop keeps going. Will this continue to be the case?
Q2:
As WebView undoubtedly will become popular. Is there a risk that I am building solutions on WebView2 features that might be shut down in the future for security reasons?
The text was updated successfully, but these errors were encountered: