Hi, I like the idea. I also guess most user will understand how it works since on mobile devices there already is such a system.
I have no idea on how this could be implemented though. Looking forward to a proof of concept. Regards, On Tue, 2017-04-04 at 18:29 +0300, Emilian Bold wrote: > Hello, > > One of the reasons I install only the essential plugins is the fact > we have > no sandboxing. > > No IDE has plugins sandboxing, but we can do better. > > There is a wide array of plugins that need very little permissions > (eg. the > highly rated "Toggle line wrap") and users would install them without > worries. > > Having a sandbox would also make a plugin review simpler. The less > and > lower impact permissions a plugin needs, the easier to review. > > On most machines whatever overhead a security manager would have is > tolerable. > > Module creators would have to add the global tag OpenIDE-Policy and > define > a standard privacy policy file (which we could enhance with IDE- > specific > permissions). > > Of course, we would need to display some nicer UI when installing in > order > to explain the user what kind of permissions the plugin needs. Since > the > permissions are checked at runtime we could also have (another) user > dialog > then. > > I will start looking at the existing code and see about a proof of > concept. > > Let me know your opinion. > > --emi -- Julien Enselme http://www.jujens.eu/
signature.asc
Description: This is a digitally signed message part
