Closed mintdotco closed 7 months ago
Yes, this is something that has been on my mind for a while now. I'll summarize some of the goals I wanted to achieve with this
These were all related goals that got limited by one thing: the PWA need to be served over HTTPS for the Service Workers
to work. This is unfortunately easier said than done, since Roku does not have the OpenSSL library to hook things up with the web server. This means the security layer for HTTP needs to be written from scratch (perhaps using some of the crypto related functionality like ifDsa and ifRsa - if these are even sufficient) so it's no easy feat, as I don't know enough about the topic.
To sum up, the options to achieve this are:
Mixed Content Security Policy
errorscast
a videoThese are all the options I can think of, but I'm open to other ideas on how to achieve this
I'm considering exploring how to use chrome://flags/#unsafely-treat-insecure-origin-as-secure
on Chrome and devtools.serviceWorkers.testing.enabled
on Firefox to achieve this. This could allow the browser to treat http as https, thus enabling service workers, offline support and web share target api.
Although these are dev options and not designed for end user, but they could unlock legitimate features.
I'm fairly convinced that this will be hard to achieve. Even with the insecure flags (that I'm betting most people will not want to enable). Since now there's support to cast from YouTube, it makes casting less painful. I'll close the issue for now until there's further development or new novel approaches to solve this
I think Progressive Web App Support would be nice for the web app. Especially for iOS device as it would make casting way easier than having to type in the full URL every time