WebKit
Support "write"-only permission mode in FileSystem/FileSystemAccess API
WebKittens
No response
Title of the proposal
Support "write"-only permission mode in FileSystem/FileSystemAccess API
URL to the spec
N/A
URL to the spec's repository
https://github.com/WICG/file-system-access
Issue Tracker URL
No response
Explainer URL
https://github.com/WICG/file-system-access/pull/462/files
TAG Design Review URL
No response
Mozilla standards-positions issue URL
https://github.com/mozilla/standards-positions/issues/1276
WebKit Bugzilla URL
No response
Radar URL
No response
Description
The File System Access API defines two access modes for file system entries: "read" and "readwrite". These modes are used when querying or requesting permission to an entry.
An issue with the current model is that operations requiring only file system modification, such as FileSystemHandle.remove(), are forced to request broad "readwrite" permission. This behavior poses some unnecessary security risks. Add a new "write"-only access mode and adjust the existing APIs would solve the issue.
Colleagues and I think this is a reasonable improvement for the File System standard.
As we remain opposed to the File System Access API I'm not sure how to resolve this request, but I think standards-wise we can at least move ahead with the change against File System provided Mozilla does not see any issues.
