(vivaldi.com)

756 points dagurp | 1 comments | 26 Jul 23 11:30 UTC | HN request time: 0s | source

Show context

Zopieux ◴[26 Jul 23 19:55 UTC] No.36883955[source]▶

As usual, a thousand word essay on Google's WEI without ever mentioning that Apple sailed that ship silently a while ago, therefore not attracting any attention or backlash.

https://httptoolkit.com/blog/apple-private-access-tokens-att...

https://toot.cafe/@pimterry/110775130465014555

The sorry state of tech news / blogs. Regurgitating the same drama without ever looking at the greater picture.

replies(5): >>36884233 #>>36884293 #>>36884650 #>>36885087 #>>36885253 #

wmf ◴[26 Jul 23 20:16 UTC] No.36884293[source]▶

>>36883955 #

Personally I don't think PATs are nearly as bad as WEI. PATs just bypass CAPTCHAs while WEI will presumably lock people out of sites completely.

replies(1): >>36885566 #

1. freedomben ◴[26 Jul 23 21:47 UTC] No.36885566[source]▶

>>36884293 #

WEI can't lock people out of sites either. It's all on the website owner. A site owner could easily lock Apple users who aren't authed via PAT today if they wanted to. The only thing that's stopped them from doing so already is that most users are non-Apple browsers so it wouldn't make sense.

↑

Unpacking Google’s Web Environment Integrity specification