Granting Application Data access is unduly complicated
| Originator: | pierre.bernard | ||
| Number: | rdar://41122836 | Date Originated: | June 14 2018 |
| Status: | Open | Resolved: | |
| Product: | macOS + SDK: Preferences | Product Version: | |
| Classification: | Reproducible: |
## Problems: #1 In order to allow a third party application to access Mail data, the user has to follow a lengthy procedure: - Open System Preferences - Navigate to Security & Privacy > Privacy > Application Data - Unlock the pane with a password - Click the “+” button - * Pitfall *: the open panel opens to the ~/Documents folder. The most unlikely place to find application. - Locate the application which may still be in the Downloads folder This behavior is different from the one seen in the Accessibility privacy settings. This list of applications lists applications that have requested interest in controlling the computer. The user simply needs to approve by adding a checkmark. #2 This procedure does not tell the user what the application intends to do with that data. For access to contacts, photos, etc. Mojave mandates the existance of a Info.plist string with a description of why access is needed. ## Suggested resolution 1. New Info.plist string to describe why access to application data is needed 2. Have Privacy > Application Data list all applications that include this Info.plist key 3. Get user approval by having her tick the checkmark next to the application 4. At this time present the Info.plist string and request confirmation
Comments
Please note: Reports posted here will not necessarily be seen by Apple. All problems should be submitted at bugreport.apple.com before they are posted here. Please only post information for Radars that you have filed yourself, and please do not include Apple confidential information in your posts. Thank you!