Remove getUserMedia() from Insecure Contexts (removed)

Per, we are deprecating and then removing getUserMedia() from insecure contexts. getUserMedia() is a powerful feature that allows access to the microphone and camera of the user agent's machine, which is a powerful privilege escalation for HTTP content injection. This will remove that attack vector by only allowing it over HTTPS.



Editor's draft

Status in Chromium


Removed (tracking bug) in:

  • Chrome for desktop release 47

Consensus & Standardization

After a feature ships in Chrome, the values listed here are not guaranteed to be up to date.

  • Public support
  • No public signals
  • No public signals
  • Mixed signals


Last updated on 2017-06-14