Currently, local (loopback after #17) permission grants access to all applications on localhost. This has two problems:
- It's not clear to users what application the page is requesting access to. This makes it hard for web sites to convince users to grant the permission, and users cannot make an informed decision and may just click "Allow" if they get tired of it.
- Once granted, the page has full access to all loopback applications. This can be abused to fingerprint the device or exploit vulnerabilities.
I think per-application (per-port) permission for loopback access would be beneficial for both web sites and users.
This could be implemented in a similar manner to PWA installation. The application serves a manifest on the root or a .well-known path, and when the page requests a permission it shows a dialog like:
**Grant local app access**
[Origin] would like to connect to the following application and other local applications listening on port 3000.
[Icon] [Name]
127.0.0.1:3000
From the app
[Description]
[Allow] [Deny]
The security and privacy implications would be minimal, as an application can already display a pop-up, access browser data, and access the local network.
Currently, local (loopback after #17) permission grants access to all applications on localhost. This has two problems:
I think per-application (per-port) permission for loopback access would be beneficial for both web sites and users.
This could be implemented in a similar manner to PWA installation. The application serves a manifest on the root or a
.well-knownpath, and when the page requests a permission it shows a dialog like:The security and privacy implications would be minimal, as an application can already display a pop-up, access browser data, and access the local network.