(www.zdnet.com)

428 points coronadisaster | 1 comments | 29 Jun 20 10:16 UTC | HN request time: 0.205s | source

Show context

phkahler ◴[29 Jun 20 13:32 UTC] No.23677378[source]▶

Those APIs should not exist. Web site creators need to stop acting like they are entitled to access whatever they want on someone's computer.

I dont care about your unique SaS usecase, these are invasive. Make a native app if that's what you need.

replies(3): >>23677439 #>>23677650 #>>23679378 #

azangru ◴[29 Jun 20 13:58 UTC] No.23677650[source]▶

>>23677378 #

Why is accessing this via a native app better than accessing it via web browser?

replies(4): >>23677681 #>>23678522 #>>23678723 #>>23680258 #

danaris ◴[29 Jun 20 15:55 UTC] No.23678723[source]▶

>>23677650 #

Creating these APIs doesn't just grant access to them to well-thought-out PWAs with a clear use case.

It grants access to every shady malware ad that wants to siphon your data and that of everyone around you.

replies(3): >>23679168 #>>23679432 #>>23679693 #

rjmunro ◴[29 Jun 20 17:02 UTC] No.23679432[source]▶

>>23678723 #

Forcing someone to install a native app not only lets the maker of the app siphon the users web browsing data, it also allows them to siphon all data from their machine, including bank details, passwords etc, and often opens security vulnerabilities that allow people who aren’t the app maker to do the same.

replies(1): >>23680881 #

1. danaris ◴[29 Jun 20 18:42 UTC] No.23680881[source]▶

>>23679432 #

At least on an iPhone, it's nearly impossible to get bank details and passwords with a native app unless you're using some incredibly sophisticated techniques.

Forcing them to install a native app also massively reduces the number of people who are going to actually let you in.

↑

Apple declined to implement 16 Web APIs in Safari due to privacy concerns