@AlesandroOrtiz @simon But either it’s ok for general consumption, and then it should be allowed everywhere, or it’s not ok for general consumption, and then it shouldn’t be allowed for Google domains either.

Why should Google domains be treated differently when it comes to smartcard access? And why should Google get a pass on updating their code to newer APIs when everyone else is forced to?