On Fri, Sep 5, 2014 at 4:15 PM, Eric Rescorla <[email protected]> wrote: > > > > On Fri, Sep 5, 2014 at 3:34 AM, Henri Sivonen <[email protected]> wrote: >> >> On Fri, Sep 5, 2014 at 1:25 PM, Robert O'Callahan <[email protected]> >> wrote: >> > On Fri, Sep 5, 2014 at 10:19 PM, Henri Sivonen <[email protected]> >> > wrote: >> >> Is current gUM restricted to authenticated origins? If it isn't, is it >> >> realistic to restrict it to authenticated origins? >> > >> > That's a good idea but it's a separate issue. >> >> Is it already being pursued or should I file a bug? > > > It's not being pursued. It was considered in the WG and rejected.
Do *you* think the WG's stance on this was and continues to be the right call for our users? Do you have a pointer to the WG's rationale for the rejection? I tried to search for it, but I failed to find either a decision or rationale. The closest I could find was https://www.w3.org/Bugs/Public/show_bug.cgi?id=22214#c3 , which treats https origins as special and says that stored permissions should only be available for them. -- Henri Sivonen [email protected] https://hsivonen.fi/ _______________________________________________ dev-platform mailing list [email protected] https://lists.mozilla.org/listinfo/dev-platform
