ubuntu-phone team mailing list archive

[John Johansen <john.johansen@xxxxxxxxxxxxx>]

On 09/21/2015 08:38 AM, Jamie Strandboge wrote:
> On 09/18/2015 10:57 AM, Oliver Grawert wrote:
>> hi,
>>
>> Am Freitag, den 18.09.2015, 18:40 +0300 schrieb Roman Shchekin:
>>> Hello guys!
>>>
>>>
>>>>> that doesnt mean the feature itself is bad, but that the
>>> implementation has to be improved
>>> But for now it's near to unusable (in my opinion). I've developed
>>> cloud storage service client (called YaD) and it's pain. Really. 
>>>
>>>
>>> Why did you choose so strong limitations? I don't know any mobile OS
>>> with so strong restrictions. And why did you do that before actual
>>> implementaion of "plenty of ways to achieve this"? 
>>>
>>
>> no idea why it was done this way, I can just point to the security team
>> again, but I belive IOS does it in a similar way ... as I said, snappy
>> fixes that issue, as soon as the phone switches to a snappy base on teh
>> way to 16.04 you get such stuff for free.
>>
> The security team didn't dictate the implementation-- we said apps need to be
> isolated and that sharing should be possible via user interaction. The sharing
> mechanism currently does copies aiui via content-hub. It could do, for example,
> hard links. Ken Vandine (in CC) might be able to comment further on this point.
> I can say that the upcoming storage framework specification deals with (vastly)
> improving sharing as well.
> 
It could also be done via fd delegation (for a temporary elevation of privileges)
or using delegation to extending the security profile associated with the
application.