Feedback: Limited directory access is too restrictive

[bradisbell]

From the explainer:

Limiting access to certain directories For example it is probably a good idea for a user agent to not allow the user to select things like the root of a filesystem, certain system directories, the users entire home directory, or even their entire downloads directory.

The user should be free to select any directory they choose. There are many use cases for sync apps, backup apps, etc., which require broad access. Putting security restrictions in the specification itself permanently cripples the API and perpetuates the web as a second-class application platform.

If the user agent chooses to make limitations, then at least users have a choice to use a different user agent.

[ghost]

If I were to click my root directory, it would most likely be on accident, but if it were intentional, I would still want to do it.

If anything, the browser vendor should be highly encouraged to give an extra warning if the user selects a system directory.