We have an application that we want to make available for general access to the Internet with as many clicks as possible. I am exploring if we can use ClickOnce to avoid the confirmation dialog that our existing alternatives entail.
Until now, my research shows that this should be possible if (a) the application is an AuthentiCode signature and (b) it comes with a manifest requesting a fairly harmless set of permissions.
Where can I find a detailed, authoritative list, which permissions are "harmless enough" to avoid a confirmation dialog? I clicked on MSDN without finding anything that looked relevant.
I found some information, which, as I understand it, says that the permissions granted to Internet Zone applications by default were configured by the user before .net 4.0 (that is, for XP and Vista), but in a later version they are hardcoded in the "host" (by which I assume this means a web browser?). But even if this is the case, I need to know that the default permissions for Internet Zone are the default in XP and Vista, as well as what sets the hard-coded resolution in Windows 7.
I am not very good at .net, so itβs possible that I am approaching this from a completely wrong point of view. If so, please let me know what the right perspective is. (However, I do not need any lectures that you want to work without a confirmation dialog - you will preach to the choir, but this decision is not mine to make).
source share