Playstore App rejection

junejatechnology · March 30, 2019, 1:08pm

How to solve this
I submitted a browser app but this mail i received
Here is apk and AIA
Apk:
Sujalbrowser (36).apk (8.1 MB)

AIA:
Sujalbrowser (1).aia (861.7 KB)

OfficialDjJohn · March 30, 2019, 1:45pm

Some sort of serious issue

Taifun · March 30, 2019, 2:24pm

how are you using the webviewer? an example screenshot might help…
and what is the link to the Google Help Center article?

Taifun

aravind_chowdary_in · March 30, 2019, 2:46pm

I think your browser shows up the webpage source code and make user able to edit it ?

I think (I’m not sure )

junejatechnology · March 30, 2019, 2:48pm

Yes your are right but only show

aravind_chowdary_in · March 30, 2019, 2:48pm

Try removing that feature and upload it.

junejatechnology · March 30, 2019, 2:48pm

https://support.google.com/faqs/answer/7668153

aravind_chowdary_in · March 30, 2019, 2:50pm

2. Ensuring that WebViews cannot load local files or execute JavaScript

Call setAllowFileAccess(false) to prevent WebViews with dangerous settings from loading local files or call setJavaScriptEnabled(false) to prevent WebViews with dangerous settings from executing JavaScript code.

The above can be Reason

Did you keep java script enabled (which is true in deafult) ??

junejatechnology · March 30, 2019, 3:04pm

Yes by disabling problem will solved?

aravind_chowdary_in · March 30, 2019, 3:06pm

I can’t confirm ! But may be !

pavi2410 · March 30, 2019, 3:22pm

Please don’t resubmit a new update. Otherwise, your app may be get suspended for repeated violations. I will try to find the reason and provide possible solution tomorrow. Please remind me tomorrow.

junejatechnology · March 30, 2019, 3:33pm

Ok thanks but app is live now without any alert

Will there be any problem In future?

aravind_chowdary_in · March 30, 2019, 5:13pm

Hmm, remember to keep the java script enabled to false always you update the app.

As Java script can lead to XSS cross site scripting.

Which can make low secured websites run as you wish which is against to google policy.

Mohd_Younis · March 30, 2019, 6:16pm

I also have a browser type app published on playstore does i also need to keep the java script enabled to false

plang58 · March 30, 2019, 10:12pm

Why we have the option for java script if we cannot use it.? There shpuld be a msg if we set java to true that google will reject your app if this option is on.
Google is really crazy they want not that and that but they want money haha.

junejatechnology · March 31, 2019, 12:46am

Ok thanks I will try

techopera99 · March 31, 2019, 5:15am

Great A lesson for everyone …hehe

junejatechnology · March 31, 2019, 1:45pm

Hi did you find any solution?

pavi2410 · April 1, 2019, 10:37am

I went through all the documentations, nothing specific I found except they want the input to evaluateJavaScript function to be sanitized and make sure we don’t forge requests by websites using arbitrary local files accessed from file:// scheme. I am not sure how we can prevent this.

plang58 · April 1, 2019, 11:54am

ask google thjey want things than they should have a solution.