platform-guideline checked
MDN Web Docs: Permissions API
Documents browser permission status querying, prompt state, API-triggered permission prompts, manual revocation through browser settings, and permission-aware APIs such as geolocation, camera, microphone, notifications, clipboard, sensors, and storage access.
Pattern Decisions This Source Supports
| Pattern | Supported decision | Required contract | Claim note |
|---|---|---|---|
| Camera capture | Choose camera capture when the product must create new camera media and users need live preview, framing, capture, review, and retake behavior. | The camera stream starts only after a deliberate user action and contextual permission rationale. | Supports permission-aware camera access and revocation states. |
| Location permission flow | Choose location permission flow when current device coordinates are the central interaction and the task needs permission timing, precision, grant or denial recovery, and location lifecycle states. | The native browser or OS prompt appears only after users understand why location is needed and choose a location-dependent action. | Supports permission state queries for geolocation and prompt, granted, and denied states. |
| Permission prompt with no context | Flag this anti-pattern when a permission prompt appears before the user starts a resource-dependent feature or before the interface explains why the resource is needed now. | The product must not invoke the platform prompt from page load, app launch, passive onboarding, timers, or unrelated navigation. | Supports browser permission status checks, prompt state, API-specific prompt triggers, manual revocation, and device-resource examples. |
| Permission request | Choose permission request when the user is authorizing an OS, browser, or device resource such as camera, microphone, location, photos, contacts, notifications, clipboard, Bluetooth, motion sensors, storage access, or another powerful feature. | The product evaluates whether permission is truly needed before declaring or requesting the platform permission. | Supports browser permission status checks, prompt state, API-specific prompt triggers, manual revocation through settings, and examples of permission-aware APIs including geolocation, camera, microphone, notifications, clipboard, sensors, and storage access. |
| QR scan | Choose QR scan when decoding a code and acting on the decoded payload is the central task. | Scanning starts only after users choose a QR-dependent task and can see purpose, fallback, and privacy impact. | Supports permission-state handling around camera access. |
Evidence Role
This source is treated as platform-guideline evidence. Use it to validate the decision rules above, not as a visual style reference.
Publisher: MDN Web Docs. Last checked: .