dpogue commented on issue #1346: URL: https://github.com/apache/cordova-ios/issues/1346#issuecomment-1583312697
The page that wants access to Cordova APIs needs to include the cordova.js file to make those APIs available. In general though, it's not recommended to enable Cordova API access on remote-hosted web content. Partly for security reasons (i.e., a cross-site scripting vulnerability on the remote page could allow an attacker to call Cordova APIs) and partly because it violates Apple's App Store guidelines around not exposing platform functionality to 3rd party content (4.7.1) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
