|
|
|
|
|
|
by pieter
6234 days ago
|
|
|
My guess would be that according to Apple's interpretation, you're allowed to: * run javascript from remote sites using the existing JS API's (so you can create alternative browsers, like there already are in the App Store)
* expose custom objects to the JS world, and use those from local scripts but you're not allowed to: * download scripts and allow them access to your native JS objects but the distinction is a bit hazy. There are also problems with 'interpreted code'. What about native code that is downloaded and executed? How about code being JIT'ed (using LLVM, or even something like C-code that is compiled and then run)? Personally I think that something like PhoneGap is very useful for the iPhone ecosystem, as it's a bit similar to how the apps on the Palm Pre work. But Apple might be concerned by the lack of any security within the JS world -- you can't allow access to some objects from local scripts, and disallow them from remote code. Apple might be working on creating some kind of access layering within the JS world, and then expose this functionality themselves. |
|
|