Intent to Prototype: Local network access restrictions for WebSockets
Chromestatus
Contact emails
hc...@chromium.orgExplainer
https://github.com/WICG/local-network-access/blob/main/explainer.md#websocketsSpecification
NoneSummary
Restricts the ability to make requests to the user's local network using WebRTC, gated behind a permission prompt. A local network request is any request from a public website to a local IP address or loopback, or from a local website (e.g. intranet) to loopback. Gating the ability for websites to perform these requests behind a permission reduces the ability of sites to use these requests to fingerprint the user's local network. This permission is restricted to secure contexts. This work is adding to the Local Network Access Restrictions work here: https://chromestatus.com/feature/5152728072060928
Blink component
Blink>SecurityFeature>LocalNetworkAccessMotivation
Local WebSockets connections are subject to many of the same attacks that the original LNA proposal are designed to solve. This would add the same controls that were implemented in the original LNA proposal to WebSockets
Initial public proposal
NoneTAG review
NoneTAG review status
PendingRisks
Interoperability and Compatibility
None
Gecko: No signal
WebKit: No signal
Web developers: No signals
Other signals:
WebView application risks
Does this intent deprecate or change behavior of existing APIs, such that it has potentially high risk for Android WebView-based applications?
None
Debuggability
None
Is this feature fully tested by web-platform-tests?
NoFlag name on about://flags
NoneFinch feature name
LocalNetworkAccessChecksWebSocketsRequires code in //chrome?
FalseTracking bug
https://crbug.com/421156866Estimated milestones
No milestones specified