Google says they will be blocking sign-ins from CEF
Posted: Mon Apr 22, 2019 11:31 pm
I'm slightly worried about this blog post by Google: https://security.googleblog.com/2019/04 ... iddle.html
The article makes CEF sound like it's only used for automation, but our use case for CEF has nothing to do with automation, we just need the off-screen-rendering mode for embedding web browsers in our platform.
I wonder how they will identify CEF vs Chromium and could I do to stop this thing from happening.
Because we can’t differentiate between a legitimate sign in and a MITM attack on these platforms, we will be blocking sign-ins from embedded browser frameworks starting in June.
The article makes CEF sound like it's only used for automation, but our use case for CEF has nothing to do with automation, we just need the off-screen-rendering mode for embedding web browsers in our platform.
I wonder how they will identify CEF vs Chromium and could I do to stop this thing from happening.