Kenneth/Thiago, Any comments on that? If there is no objective, we'll go with that way.
Thanks, Halton. _____________________________________________ From: Gao, Shawn Sent: Thursday, April 24, 2014 6:17 PM To: '[email protected]' Cc: Jiang, Xiaodan; Huo, Halton Subject: Change parameter of requestNativeFileSystem() Hi, In "Intent to Implement - Native File API", "requestNativeFileSystem" has path parameter, which points out where is the root of this file system. This will lead many security issues. Hence, I suggest changing the path to type of directory, which can be translated to real path by this extension. That will avoid expose whole storage to developer. Following types are under consideration. 1. Normal resources path on user storage, Downloads, Documents, Videos, Pictures. 2. AppPath, root directory of this application. 3. InnerStorage, root directory of inner storage, like "storage0" on Android. 4. ExternalStorage, root directory of external storage. Developer has full read/write/create/delete ability in these directories. It looks like provide much more directories to developers. Maybe we can remove some directories out of this list. Or, only grant read permission for some of directories. Any advice? Thanks, Shawn
_______________________________________________ Crosswalk-dev mailing list [email protected] https://lists.crosswalk-project.org/mailman/listinfo/crosswalk-dev
