Phone call not working after upgrade to cordora 3.6
After upgrading my project to cordova 3.6, the phone call tag doesn't work in Android.
<a class="icons" href="tel:+1-800-555-1234" align="center" > Order Food </a>
this is my HTML and here is my config file.
<?xml version='1.0' encoding='utf-8'?>
<widget id="com.foodOrders" version="0.0.2" xmlns="http://www.w3.org/ns/widgets" xmlns:cdv="http://cordova.apache.org/ns/1.0">
<preference name="loglevel" value="DEBUG" />
<name>Food Order</name>
<content src="index.html" />
<feature name="SplashScreen">
<param name="android-package" value="org.apache.cordova.splashscreen.SplashScreen" />
</feature>
<preference name="SplashScreen" value="screen" />
<feature name="NetworkStatus">
<param name="android-package" value="org.apache.cordova.networkinformation.NetworkManager" />
</feature>
<feature name="InAppBrowser">
<param name="android-package" value="org.apache.cordova.inappbrowser.InAppBrowser" />
</feature>
<access origin="*" />
</widget>
Permission is resolved here and it works great before updating to cordova 3.6. The latter has been tested in Cordova version 3.5 and works fine in it.
source to share
Just add to your config file and it will work. <access origin="*" launch-external="yes" />
Apache Corodva has link 3.6 here , you can find the changes that are being accepted in it. Prior to corodva 3.5.0, you don't need to explicitly add "external" app whitelist permissions to your config file. But this is the reason for the security vulnerability reported in CB-7291. see this
Any URL not explicitly whitelisted has been sent to the Android system intent for processing. This was the cause of security vulnerabilities reported by IBM and disclosed in CVE-2014-3502
source to share