Skip to content

[Proposal] Per-application (per-port) permission for loopback access #92

Description

@ylemkimon

Currently, local (loopback after #17) permission grants access to all applications on localhost. This has two problems:

  • It's not clear to users what application the page is requesting access to. This makes it hard for web sites to convince users to grant the permission, and users cannot make an informed decision and may just click "Allow" if they get tired of it.
  • Once granted, the page has full access to all loopback applications. This can be abused to fingerprint the device or exploit vulnerabilities.

I think per-application (per-port) permission for loopback access would be beneficial for both web sites and users.

This could be implemented in a similar manner to PWA installation. The application serves a manifest on the root or a .well-known path, and when the page requests a permission it shows a dialog like:

**Grant local app access**
[Origin] would like to connect to the following application and other local applications listening on port 3000.

[Icon] [Name]
127.0.0.1:3000

From the app
[Description]

[Allow] [Deny]

The security and privacy implications would be minimal, as an application can already display a pop-up, access browser data, and access the local network.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions