Uploaded image for project: 'Apache Cordova'
  1. Apache Cordova
  2. CB-9568

Update whitelist plugin to allow all network access by default

    XMLWordPrintableJSON

Details

    Description

      Basically the default for the access tag, if it's not present is the wildcard "*"

      It's as if this tag is there if not present:
      <access origin="*" />

      ML thread: http://markmail.org/message/j3kd4lug65jdiiba

      From Carlos:

      But we need better docs to explain the differences between legacy-whitelist
and whitelist

And more detailed explanation on how to create a proper config.xml that
works across the board for ios and android. What about windows?

Also to look on how to have a good config.xml in hello-world template,
since most users will start with this first and I would like to be secure
by default and they open. meaning rely on CSP, and only use config.xml for
x, y, z

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. CB-8374 Access origin/whitelist for iOS doesn't default to all if access element missing from config.xml

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          is related to

          Bug - A problem which impairs or prevents the functions of the product. CB-9648 Update docs for new whitelist

          • Major - Major loss of function.
          • Closed

          Activity

            People

              shazron Shazron Abdullah
              shazron Shazron Abdullah
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: