Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Revisit: Persisting permissions #10

Open
eladalon1983 opened this issue Mar 16, 2022 · 3 comments
Open

Revisit: Persisting permissions #10

eladalon1983 opened this issue Mar 16, 2022 · 3 comments
Labels
security-tracker Group bringing to attention of security, or tracked by the security Group but not needing response.

Comments

@eladalon1983
Copy link
Member

eladalon1983 commented Mar 16, 2022
edited
Loading

Wrt:

Like getDisplayMedia(), the "granted" permission cannot be persisted.

getViewportMedia has strict security requirements that could hamper adoption (cross-origin isolation and the document policy). We should do all we can to make the effort worthwhile to developers. The possibility of persisting permissions could tip the scales here. Let's discuss whether this is possible.

(nit: "permission cannot be persisted" - Do you want to change "cannot" to "MUST NOT"?)
@eladalon1983 eladalon1983 changed the title Persisting permissions Revisit: Persisting permissions Mar 16, 2022
@dontcallmedom dontcallmedom added the security-tracker Group bringing to attention of security, or tracked by the security Group but not needing response. label Apr 25, 2022
@w3cbot w3cbot mentioned this issue Apr 25, 2022
Open
@jan-ivar
Copy link
Member

jan-ivar commented Apr 28, 2022
edited
Loading

I think this tends to be a user agent choice, so we should perhaps consider this. I would object to a "MUST persist" however.

@eladalon1983
Copy link
Member Author

@youennf raised an interesting question about persisting permissions when the last call approved {video}, {audio} or {video, audio}.

@jan-ivar jan-ivar mentioned this issue May 9, 2022
Open
@youennf
Copy link

youennf commented Sep 14, 2022

getViewportMedia has strict security requirements that could hamper adoption (cross-origin isolation and the document

Glad mentioned this issue during element capture breakout session at TPAC.
Some ideas were brought to reduce adoption barrier for element capture, which might be useful as well for getViewPortMedia.
For instance anonymous iframes..
It seems worth looking at this area.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security-tracker Group bringing to attention of security, or tracked by the security Group but not needing response.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@dontcallmedom @jan-ivar @youennf @eladalon1983