[solved] How can a webapp run in sandbox when using Morph browser to display its content?

Custello · 12 Dec 2018, 23:20

I am wondering about why many people claim that Webapps can run in a sandbox, even if they use Morph Browser to display their content?

The reason for my question is that I recently have built a webapp for a website with Webapp Creator. When I opened the webapp for the first time, I had to confirm some data privacy hint of the website. When opening the webapp for the second time, this hint did not appear anymore.

Therefore I fear some cookie has been stored on my system, even if the webapp claims to run in a sandbox?

dobey · 13 Dec 2018, 15:34

Web apps are not using Morph Browser to display their content, in the sense of running in the full browser. They are running instead in the "webapp-container" which is provided by Morph Browser, and which is run under confinement (thus sandboxed), with its own profile, in a separate directory from the main browser.

It however, does not run in "incognito" mode, so that it can store cookies in its own profile (so you don't have to log in to the site every time you open the web app). Though, if you open the site in the main browser app, rather than using the web app, you'll find cookies set in the web app, are not known to the main browser.

Custello · 13 Dec 2018, 17:59

Thanks a lot!

@dobey said in How can a webapp run in sandbox when using Morph browser to display its content?:

They are running instead in the "webapp-container" which is provided by Morph Browser, and which is run under confinement (thus sandboxed), with its own profile, in a separate directory from the main browser.

That means, the webapp does not reset its corresponding webapp-container to factory defaults (when closing the app)? Is it possible to force such a behavior?

dobey · 13 Dec 2018, 18:17

@custello said in How can a webapp run in sandbox when using Morph browser to display its content?:

That means, the webapp does not reset its corresponding webapp-container to factory defaults (when closing the app)? Is it possible to force such a behavior?

It does not destroy the profile on exit, no. Why would you want such a behavior? That seems like it would be very toxic to persons using a web app.

Custello · 14 Dec 2018, 09:33

@dobey said in How can a webapp run in sandbox when using Morph browser to display its content?:

It does not destroy the profile on exit, no. Why would you want such a behavior?

Just to prevent blowing up the webapp profile too much... As a pure reading app, in my eyes there is no need to store any data on the phone. Neither cookies nor anything else (e.g. accepted privacy confirmations).