Of course, this would require to use an installer/installation package. If they are not happy with that, then they can just not install the software. the users' as they could know before installing the software that and why some components require FDA. This could be displayed in Installer.app. the developers' as they could list all the components that need FDA and provide the reason why. If it was possible to grant access to the applications during the installation process, this would simplify the life of everyone: > I do wish Apple provided a more unified UI for this, though… AFAIK, you can not do that correctly for files/apps located in folders "protected" by FDA. If you need to report to the user that a file can not be accessed or an application can not be launched, you need to be able to read the file or application metadata at least. If you have in mind a type of an app using Endpoint Security that would not require it, I'm curious to know which one as I can't think of one right now myself. > But… do all Endpoint Security apps even need Full Disk Access? I’m not sure if they copped out of that because the API is harder (can’t really show those dialogs on-demand any more in such a scenario), or in the name of simplicity™ which backfired. Not three “this app wants” dialogs, but one combined “this is the three things the app wants” dialog. I do wish Apple provided a more unified UI for this, though. Does it appear, with the checkbox ticked, and a “Endpoint Security apps always have Full Disk Access” description underneath? That’s better, I guess.īut… do all Endpoint Security apps even need Full Disk Access? And if not, isn’t it actually good that exactly such a far-reaching app is heavily sandboxed? The OS providing various warnings before an app can implant itself deeply into the system? Hell yes. Does it not appear at all in that list? That would be worse. Would it really have been better if Endpoint Security is exempt from it? How do you model that, UX-wise? Does an app with Endpoint Security silently appear with the checkbox ticked in Full Disk Access? That wouldn’t be great. So even when you use EndPoint Security, you still have to go through Apple’s Full Disk Access unfriendly UX…
0 Comments
Leave a Reply. |