Things have improved, and some of this consistency is being pushed by the permission API, but there are still lots of unknown around the right granularity of permissions, how they interact with embedding, and new specs such Feature Policy are likely to further change the landscape.
It would be good to have maintained guidance on how to approach permissions in Web APIs to ensure greater consistency.
Back in 2014, we had lots of inconsistent approaches to managing permissions across JS APIs (as I documented in a cross-API review).
Things have improved, and some of this consistency is being pushed by the permission API, but there are still lots of unknown around the right granularity of permissions, how they interact with embedding, and new specs such Feature Policy are likely to further change the landscape.
It would be good to have maintained guidance on how to approach permissions in Web APIs to ensure greater consistency.
Strongly related to https://github.com/w3c/strategy/issues/78