For context:
https://groups.google.com/d/msg/pine-discuss/5hcMOM__mmA/ElOuaqFFp1wJ
At this point, I think the sanest approach is to forgo sandboxing and make each game its own webpage. While we can run games in an iframe, the performance takes too much of a hit to be considered workable. I considered doing some weird workaround with managing Chromium's tabs programmatically, but ultimately we still won't get the results we want because we can't hijack the input from a game running in its own tab (short of doing something at the OS level).
Well... I suppose we can achieve this by doing some hacky things with Chromium extensions, but I imagine that such an approach would be time consuming and flakey. It might make sense to pursue this, but I don't think it's necessary to get working for a first version.
In any case, I think the best thing to do for now is to just treat games like regular webpages. We're already requiring developers to use our API, and I've already added functionality
for exiting back into the Pine app. I suggest taking the "trust the developer" approach until it proves to be a real problem. By then we can come up with a hack to enforce game exit functionality.
This change lives in the
unsandbox branch, but I'd like to wait to see what everyone else thinks about dropping the sandbox before I merge this to master.