It's a kitchen sink!

Permissions/
Document Policy

Demos

Select a policy to begin.

Permissions Policy allows web developers to selectively enable, disable, and modify the behavior of various features and APIs in the browser. This can provide a well-lit path towards good performance and prevent common footguns when building and maintaining web apps.

Permissions policy is not supported in your browser. Try Chrome Canary and enable the --enable-experimental-web-platform-features flag.

You control permissions policies through an HTTP header:

Permissions-Policy: geolocation=*
Permissions-Policy: geolocation=()
Permissions-Policy: geolocation=self
Permissions-Policy: geolocation="https://google-developers.appspot.com"

or by adding the allow attribute on iframes:

<iframe allow="geolocation">
<iframe allow="geolocation 'self'">
<iframe allow="geolocation 'none'">
<iframe allow="geolocation https://google-developers.appspot.com">