Issue metadata
Sign in to add a comment
|
Can't undo permission when there is a pattern |
||||||||||||||||||||||
Issue description1. Clear permissions of https://permission.site (or any site) 2. Go to content settings and add an exception for notifications for https://[*.]permission.site to allow. 3. Go to https://permission.site page info and notice that the notification is allow, non default. Seems right. 4. Change that back to Ask (default) in page info 5. Reload and go back to page info and notice it is back to Allow. I think the right solution here is ... to basically rethink the way we present the permissions model we have :) Currently we have 'defaults' and 'exceptions'. Patterns are exceptions. Things you allow via prompts are excetpsions. What we should have is 'defaults', 'exceptions' and 'allowed / blocked sites'. Patterns are still exceptions but are an advanced concept. When in page info and the current setting is due to an exception, it should be treated like when the setting comes from an exception or enterprise setting. I.e. not be editable from page info. Exceptions should also be treated quite differently in the settings UI we have.
,
Mar 24 2017
,
Mar 24 2017
,
Mar 24 2017
Some context to #1: as far as I understand, the inability to override an inherited setting with Ask (except for Flash) is "working as intended" for our current permissions model. However, it would be nice if our model either naturally supported it, or were structured in such a way that you wouldn't "want" to do it this way. But the UI is still doing something wrong in either case.
,
Mar 26 2017
Ah, thanks for pointing that bug out. It happens to have has fixed itself, as we now scoped all permissions to origin by default :)
,
Mar 27 2017
Re #4: Right - according to the model it is kind of expected, but the UI is currently wrong :) I think disabling it in this case and making it clear how to undo the manual exception is the right way to go, but that will require design work and probable improvements in settings.
,
Mar 27 2017
assigning to Raymes as general owner of permissions model
,
Apr 3 2017
benwells: I think I agree with your suggestion in the original description in terms of simplicity. One problem is that currently per-origins settings actually have a higher precedence than broad exceptions. It would be a fairly significant breaking change to change that. We would need to determine how many users it would impact and whether the breakage would be worth it. One of the use cases we've seen is that some people want to be able to broadly block something (like Javascript on all https) but enable it on a case-by-case basis. Changing the way exceptions work would make this impossible to do. Another approach to this would be to treat exceptions more like embargo. That is, they apply on top of defaults but are overridable by users for specific sites. This is basically the behavior today. The challenge then is how to do the UX. I think there could be some reasonable solutions there. Probably not as clean as what you're suggestion in #0 but still reasonable.
,
Apr 3 2017
OK. Seems like we have a few options and can come up with something good, once we have the time to implement it...
,
May 19 2017
,
Jun 2 2017
Issue 614618 has been merged into this issue.
,
Jun 2 2017
We have a doc about this here: https://docs.google.com/document/d/1XxLt9tlNizWDMbO_gWegVnZs_kNM1anI1vR56fjRhf0/edit Now we just have to find time to do the work :)
,
Nov 2 2017
,
Nov 10 2017
,
Feb 18 2018
,
Nov 23
*** UI Mass Triage*** Tested on latest Canary #72.0.3618.0 on Windows 10 and was able to reproduce the issue as the issue seems to be fixed. Hence, adding appropriate labels. Thanks! |
|||||||||||||||||||||||
►
Sign in to add a comment |
|||||||||||||||||||||||
Comment 1 by lgar...@chromium.org
, Mar 24 2017