So Apple just threw the baby out with the bathwater and killed offline web apps (unless you’re cool with all your data being deleted if you don’t use an app for a week). You’d almost think they had an App Store to promote or something.

webkit.org/blog/10218/full-thi

🤦‍♂️

Follow

Block all third-party cookies, yes, by all means. But deleting Local Storage after 7 days effectively blocks any future decentralised apps using the browser (client side) as a trusted replication node in a peer-to-peer network. And that’s a huge blow to the future of privacy.

Of course, if Apple were actually serious about protecting your privacy, they’d implement all this in their News app also. They won’t. And they won’t allow content blockers work in it either. Because just like every other trillion-dollar corporation, they’re massive hypocrites.

Show thread

(And just to be clear, that’s all “local storage”, not just LocalStorage – Indexed DB, etc.)

Show thread

@aral sounds like they're prepping for the "everything's an Electron app"

@aral

So, before this change in Apple's policy, an app could store my config data on my PC.

After this change, they'd need to have me log in and send the config data to *their* servers.

And this is supposed to *protect* privacy?

@codesections @aral They've revised the announcement in response to criticism:

A Note On Web Applications Added to the Home Screen

As mentioned, the seven-day cap on script-writable storage is gated on “after seven days of Safari use without user interaction on the site.” That is the case in Safari. Web applications added to the home screen are not part of Safari and thus have their own counter of days of use. Their days of use will match actual use of the web application which resets the timer. We do not expect the first-party in such a web application to have its website data deleted.

If your web application does experience website data deletion, please let us know since we would consider it a serious bug. It is not the intention of Intelligent Tracking Prevention to delete website data for first parties in web applications.

@ssokolow @codesections Saw. Doesn’t change anything. They do this, they kill Offline Web Apps. And with it, the possibility of using the web as a bridge to p2p.

Sign in to participate in the conversation
Aral’s Mastodon

The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!