Comments (3)
this is a question asked by everybody using chrome apps, and a pain for everybody building them.
I'll start with the easiest one:
- Your tabs and browsing activity
- Google explanation: Required if the extension uses the chrome.tabs or chrome.windows module.
- What we use it for: the only access to tabs we need is for launching the oAuth Authorization page to the 3rd party oAuth provider.
- Your data on all websites
- Google Explanation: Specifies a host permission. Required if the extension wants to create cross-origin XMLHttpRequests, and the cookies API require host permissions.
- What we use it for: we ask for
*://*/*
so that developers can make API calls to ANY URL ...
we don't collect any personal data, we don't want access to your data on all websites, I personally don't agree with Google's labeling this permission as "Your data on all websites" its confusing to average users ... however we're dealing with developers and it should be simple enough for any developer to understand how this works and to know that we only ask for these permissions to give the developer access, not us.
do you think the above description is clear enough to be posted on the webstore, or does it require more clarity?
thanks.
from app-restconsole.
I know rest-console targets developers, and as a developer myself I'm more than enclined to check out the code.
But I've come across several weird permission changes and strange behaviors in chrome apps.
I think this description fits well and should definitely be posted on the webstore, especially if you plan to change permissions in the future.
Many thanks for this great app.
from app-restconsole.
I've changed the permissions for the "extension" as I completely changed the whole of it to become a launcher for the "App"
I don't think I'll ever change permissions for the App, unless google comes up with a new API or some better permissions for the App's purpose ...
I will post this description to the store right now.
thanks for your feedback.
from app-restconsole.
Related Issues (20)
- Dialog box not dismissed
- Cookies / Accept-Encoding not shown in Request Headers tab
- "Source Code" and "Issues" links are broken HOT 1
- Repeated query parameters are not supported
- Feature Request: Larger Preview Panel HOT 1
- Feature Request: Provide option to keep 'Send, Get, Post, etc' bar on the screen at all times HOT 1
- All GitHub links at the bottom of app go to wrong repo HOT 4
- Typo in Request Method name HOT 1
- CONNECT HTTP Method spelled wrong
- Install without google login
- Remember and offer selection of multiple OAuth configurations
- Incorrect label for "Request Headers" in Custom Headers
- Wrong OAuth signatures
- Proxy support HOT 1
- Allow the header used for oauth to be specified
- Spelling error "Query sliing"
- Feature Request: copy request from network viewer
- POST parameters are not sent HOT 5
- OAuth2 & OAuth2 Implicit grant
- https support HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from app-restconsole.