brettz9
commented
6 years ago This is excellent to see the addressing of suborigins to allow content-specific storage...
Although the following suggestion goes a bit in the opposite direction (to enable site-independent storage accessible to any origin upon but upon user permission), I think it may be reasonable to consider the two use cases together, especially given that the decentralized nature of IPFS seems to cry out for a means of common site-agnostic storage (albeit one which is of course subject to user permission).
I'd like to request that provision be made--whether at the IPFS level or more ideally I think at the browser level (if our voice can influence the browsers)--to create a form of site agnostic origin-independent storage (whether for localStorage, indexedDB, cookies, etc.) which is deliberately accessible to any origin or suborigin upon user consent.
Just as one can freely choose any local application to handle any given data file, one should be able to choose any website to handle data created by another site. Moreover, no particular site, including the original creator of the origin-independent data would be the gate-keeper, but it would instead be accessible to or modifiable by any origin upon user permission. We could call this proposal tentatively, COIS (Common, Origin-Independent Storage).
COIS should obviously occur at the user's discretion rather than the current situation where any webpage served from localhost can access and even modify the same localhost storage of another localhost web app without needing user permission.
Automatically using, or at least offering the option of using COIS, would be in the interest of many sites, as their storing the user's data in an open, site-agnostic format would assure their users that their data would not be inaccessible or require exporting from a remote site, etc., if their site ever went belly-up, or if the user just happened to want to switch at will between different applications to manage their own data (without the need of intermediate steps of exporting and importing with attendant inconvenience and synchronization-between-sites problems).
I would thus suggest considering enabling ideally both of the following options for users:
-
The user could allow any website to request permission to access COIS (ideally even granular to a particular subnamespace of data within COIS and granular as to whether an origin or suborigin is seeking to gain readonly or readwrite access). If browsers don't provide such an API, then IPFS could still conceivably recommend a particular origin (or suborigin) which hosted code with an API to gain access to that (shared) origin's storage.
-
The user has the browser prevent websites from even being able to ask permission for access to COIS but the user can whitelist particular origins (or suborigins) in local preferences to enable such sites to access COIS. If browsers will not implement then IPFS could perhaps, through a browser add-on, have its own preferences that would allow COIS origin/suborigin whitelisting.
What do you think?
lidel
Suborigins are WIP standard that – if implemented by browser vendors – could provide a way to isolate CID-specific paths into their own Origins.
It is an alternative way to solve the Problem of Inability to Control How Origin Is Calculated in Web Browsers (other one being CID-in-subdomain and programmable protocol handler API).
References
Notable Events
2014-11public standards discussion announced @ lists.w3.org2015-01ipfs/go-ipfs Implement per-page suborigins in the gateway2016-09w3c/webappsec-suborigins: not allowed to start with number/can only start with letters2016-12ipfs/go-ipfs: gateway: disable Suborigins as it conflicts the spec2017-09https://github.com/mozilla/standards-positions/issues/31 (opened with a note about outstanding issues)2019-11https://github.com/mozilla/standards-positions/issues/31#issuecomment-555418542 (closed due to no work)