Apple declined to implement 16 Web APIs in Safari due to privacy concerns

(www.zdnet.com)

428 points coronadisaster | 2 comments | 29 Jun 20 10:16 UTC | HN request time: 1.443s | source

Show context

philistine ◴[29 Jun 20 13:03 UTC] No.23677180[source]▶

I’ve heard so many people complain on HN about Safari’s lack of support for APIs. Before now, we didn’t have a public justification why Apple refused to implement them. Now we know.

The price of a Safari user in the ad market is going down, and it’s exactly what should be happening. I’m very happy with Apple.

https://9to5mac.com/2019/12/09/apple-safari-privacy-feature-...

replies(8): >>23677237 #>>23677240 #>>23677307 #>>23677333 #>>23677632 #>>23678116 #>>23681749 #>>23682896 #

fastball ◴[29 Jun 20 13:21 UTC] No.23677307[source]▶

>>23677180 #

Except "privacy" as a justification is BS.

You can implement these APIs while at the same time requiring explicit permission from the user before a web application can use them. This preserves privacy while also giving users the option to have much more powerful web applications.

Apple doesn't want to implement these APIs because currently if you want access to these things on iOS, you need to go through their walled garden App Store, where they get a big chunk of any revenue you might make on such a service and can nerf competitors and all the other anti-competitive stuff they're doing.

replies(7): >>23677413 #>>23677496 #>>23677509 #>>23677610 #>>23679646 #>>23679893 #>>23680797 #

jodrellblank ◴[29 Jun 20 13:43 UTC] No.23677496[source]▶

>>23677307 #

Recently I’ve seen a jump in the number of random sites popping up a “this site wants to access VR hardware” dialogs in FireFox; news articles nothing to do with VR or visualisation. I don’t have any VR devices.

How do you do this bit “requiring explicit permission from the user before a web application can use them” without the fallout of “its just a hundred thousand popups and you’re done!” on every page?

replies(3): >>23677710 #>>23677892 #>>23678336 #

1. fastball ◴[29 Jun 20 15:14 UTC] No.23678336[source]▶

>>23677496 #

Easy. You don't have them in popups, you have them in a dropdown that the user selects themselves. Websites then need to learn to fail gracefully if not given certain permissions, otherwise consumers need to stop using those websites.

The solution to privacy concerns is not "nuke functionality", it's "don't let websites abuse functionality for tracking purposes".

Just like how with native apps on iOS, the solution is not "don't let apps ever access GPS data", it's provide a UX that makes it fairly easy to choose and don't provide permissions to apps that don't need them.

replies(1): >>23684545 #

2. jodrellblank ◴[29 Jun 20 23:13 UTC] No.23684545[source]▶

>>23678336 (TP) #

"Just like iOS"? The iOS solution to GPS data permissions is a modal popup: https://support.apple.com/library/content/dam/edam/applecare...

from the page https://support.apple.com/en-gb/HT203033

↑