Re: [Elementary-dev-community] elementary's path forward for application containment and security.

Contractor only implements the first one it does not fetch data for an app, it just enables the application to send its data to another application for further work. The latter would require more work on the 3rd party application while the current setup just needs a contract file and everything el

Re: [Elementary-dev-community] elementary's path forward for application containment and security.

I guess what I do not understand is how the application gets the data by executing the command. What I see in that implementation is simply a return of a command to run with an existing file as an argument, instead of a way to retrieve a new file. The difference is that the former says "I have

Re: [Elementary-dev-community] elementary's path forward for application containment and security.

The earlier implementation IIRC worked in the following way. App -> contractor [give me a list if programs that handle file type x] <- [program a b ... ..] App asks the user to select one or selects one itself and App -> Contractor [program Id x, for file/uri y] <- [command string] App execu

Re: [Elementary-dev-community] elementary's path forward for application containment and security.

Hello Akshay, Could you clarify the process of how the data was returned? Ubuntu's Content Hub has a nice methodology to accomplish this. It has an, what I assume to be QML, object that represents the transfer, and the data is transferred through that, not by running a command. Perhaps Contr

Re: [Elementary-dev-community] elementary's path forward for application containment and security.

Hey Cameron, What you are describing sounds very similar to androids intent system. The fist version of contractor did return data but the problem with that was the application had to execute a command returned as a string so if a program was running as root and a malicious program used the same

Re: [Elementary-dev-community] elementary's path forward for application containment and security.

Yes, I can definitely see how much this would expand Contractor's scope, but it is possible that we could engage with the GNOME community to work on Contractor, since it does not seem like Lennart Poettering has begun the portals work. Content Hub seems to be already developed, but its API is

Re: [Elementary-dev-community] elementary's path forward for application containment and security.

Hey Cameron, I've been thinking about app containment too and I know I feel better on iOS that apps have to ask my permission to use things like location services. I think it would be worth looking at the solutions from both Canonical and GNOME first before we go building our own solution. 

[Elementary-dev-community] elementary's path forward for application containment and security.

Hello all, I recently have taken an interest in some of the containment and security features being developed for Ubuntu touch, as well as Lennart Poettering's plans for containment on GNOME. One of the recurring aspects that I see is a "Content Hub" (Ubuntu) or "application Portals" (GNOME)