Lightrun
question-mark
Stuck on an issue?

Lightrun Answers was designed to reduce the constant googling that comes with debugging 3rd party libraries. It collects links to all the places you might be looking at while hunting down a tough bug.

And, if you’re still stuck at the end, we’re happy to hop on a call to see how we can help out.

Privacy - iOS: JitsiMeet.framework utilizes react-native-netinfo which sends HTTP requests to Google

See original GitHub issue

Description

JitsiMeet.framework is used by the iOS Riot app. Using Riot it was discovered that the app sends HTTP requests to Google. This is unwanted due to privacy concerns. It seems the requests emerge from react-native-netinfo which is utilized by JitsiMeet.framework.

Current behavior

JitsiMeet.framework sends (multiple) request to clients3.google.com/generate_204 during the lifetime of the app.

Expected Behavior

JitsiMeet.framework should not loose data to Google. If react-native-netinfo provides desireable features this behaviour should be optional/configurable.

Possible Solution

Update to a version of react-native-netinfo where this behaviour is configurable.

Steps to reproduce

Install the iOS Riot app and configure it. Install the Charles proxy app. Start the Riot app. You’ll see the request to clients3.google.com in the log of Charles.

Environment details

iOS 13.4, iOS Riot app

Issue Analytics

  • State:open
  • Created 3 years ago
  • Reactions:3
  • Comments:17 (11 by maintainers)

github_iconTop GitHub Comments

1reaction
pixlwavecommented, Apr 19, 2022

Thought it was worth mentioning in this thread that upgrading JitsiMeetSDK to 5.0.2 in Element iOS has stopped the app from pinging Google so long as you don’t join a Jitsi call. Once that happens then we see the checks every minute even once you have left the call.t

I think the change that we ought to do here is to direct the HEAD request at the config.js file of the configured server.

Checking meet.element.io/config.js, the file is 60KB which could be considered a bit heavy for a mobile device when there isn’t much signal. Would it be feasible to expose a property so that SDK users could configure the URL themselves?

0reactions
pixlwavecommented, Apr 19, 2022

Ohhh TIL, sounds perfect 👍

Read more comments on GitHub >

github_iconTop Results From Across the Web

User Privacy and Data Use - App Store - Apple Developer
User Privacy and Data Use. The App Store is designed to be a safe and trusted place for users to discover apps created...
Read more >
iOS SDK | Jitsi Meet - GitHub Pages
JitsiMeet is an iOS framework which embodies the whole Jitsi Meet experience and makes it reusable by third-party apps. To get started: Add...
Read more >
Jitsi Meet - Apps on Google Play
Jitsi Meet lets you stay in touch with all your teams, be they family, friends, or colleagues. Instant video conferences, efficiently adapting to...
Read more >
Supporting partners through the rollout of Apple's new ATT ...
We are no longer sending the Google click identifier (GCLID) for iOS 14 traffic coming from ads on a handful of Google apps....
Read more >
Switch to Android
Around the clock security and new privacy tools. And Google apps that work smarter together. It's easy to move from iPhone® to Android...
Read more >

github_iconTop Related Medium Post

No results found

github_iconTop Related StackOverflow Question

No results found

github_iconTroubleshoot Live Code

Lightrun enables developers to add logs, metrics and snapshots to live code - no restarts or redeploys required.
Start Free

github_iconTop Related Reddit Thread

No results found

github_iconTop Related Hackernoon Post

No results found

github_iconTop Related Tweet

No results found

github_iconTop Related Dev.to Post

No results found

github_iconTop Related Hashnode Post

No results found
Previous page

Adding option to log out of xmpp session

Next page

portmanager: Error binding encrypted port for https: No certificate present in SSL/TLS configuration for https port 528