0

Am new to HTML/JavaScripting. Interested in seeking answers to the following questions.

  1. HtmL5 apps - how security is controlled ? (Permissions / Capabilities) . JavaScript security. How does platform level(say some mobile platform) security map to JavaScript security. If I wanted to use these HTML apps in the handset, will the security be taken care by the mobile framework?
  2. How do third part developers request for such capabilities (such as deleting a contact or file from HTML5/Java Script).
SSM
  • 9
  • 1

1 Answers1

1

HTML5 brings nothing fundamentally new in terms of security. Your scripts will run in a sandbox and not have access to any other APIs than those exposed by the platform they are running on. You will learn about those APIs in the documentation of your chosen platform. For instance, Symbian web apps expose certain APIs that allow developers to get some information about the system. You do not "request" for such capability, you simply use it. Other platforms may impose additional requirements.

Tomas Kohl
  • 1,380
  • 1
  • 20
  • 26
  • Thanks Tomas If I understand you correctly, the html app shud be bundled as a sandbox specific to that platform. Say for android it shud be bundled as an apk. and this apk will use the platform apis. Hence all the security issues need to be handled by the platform which exposes the APIs rather than the app itself? – SSM Jul 22 '11 at 10:39