[
https://issues.apache.org/jira/browse/CB-13648?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16295761#comment-16295761
]
Joe Bowser commented on CB-13648:
---------------------------------
This is worth a read if you want to know why we made the design decisions we
did w.r.t. Cordova, and why we have a Whitelist, why calls across the bridge
are serialized, why we abuse reflection, etc, etc.
https://developer.android.com/training/articles/security-tips.html#WebView
> Cordova Android Security Concern? What is the correct workflow for apps with
> this issue? (see description)
> ----------------------------------------------------------------------------------------------------------
>
> Key: CB-13648
> URL: https://issues.apache.org/jira/browse/CB-13648
> Project: Apache Cordova
> Issue Type: Bug
> Components: cordova-android
> Reporter: Abhishek Joshi
> Assignee: Joe Bowser
>
> https://developer.android.com/training/articles/security-gms-provider.html
> 1) Is this bug discussed above a concern with Cordova apps out of the Box
> (near helloworld level of apps), since Cordova runs off Webviews?
> 2) If this bug is a concern, what should the correct workaround be? Do I need
> to create my own plugin to manage this? Is there a solution?
> 3) Any comments?
--
This message was sent by Atlassian JIRA
(v6.4.14#64029)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
