New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Deprecate inputDeviceInfo.getCapabilities() for better privacy #17
Comments
But only after the web page starts capturing, so this does not happen for most web pages. I think it would make more sense to restrict enumerateDevices so that it would only list devices that have been used and not all devices. Once a device has been used, this information is provided at the MediaStreamTrack level and can be stored by the page anyway. Note also that there is some interest for discovery of audio input/output capabilities in the audio WG/audio WG latest charter. |
Right, that's all we're talking about. We already did w3c/mediacapture-main#632.
How would that "allow a site to enforce its constraints while building a picker"? |
If the device was used in the past, the web page was able to grab the capabilities from the track and store them. We can therefore expose getCapabilities to any device that was used in the past from the last reset ID event, without any additional fingerprinting exposure. This seems like a handy mechanism to me. The only case is those devices that have not been used in the past. We could decide for getCapabilities to return an empty object to keep it privacy neutral but we would loose some functionality in how web pages can discover the user setup. I am hesitant to break this functionality. |
From https://github.com/w3c/mediacapture-main/issues/669#issuecomment-605114117:
So far, it looks like only Chrome/Edge implement it (WPT)
The text was updated successfully, but these errors were encountered: