What exactly are the differences in terms of privileges for sandboxed apps and XPC service?
Privilege difference between an app extension, containing app and XPC service?
An XPC Service is a separate process running a separate executable and thus it is sandboxed completely independently of the container app. Thus, the “privilege difference” depends on how you’ve configured the two sandboxes. Indeed, it’s possible to have a sandboxed app that contains an XPC Service that’s not sandboxed at all, and that configuration makes sense in some situations [1].
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"
[1] For example, if you’re distributing an app outside of the Mac App Store and you want to have most of the app sandboxed but some small part of your code needs to run outside of the sandbox. Be aware, however, that this won’t be allowed in the Mac App Store, which requires that all code be sandboxed.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"
[1] For example, if you’re distributing an app outside of the Mac App Store and you want to have most of the app sandboxed but some small part of your code needs to run outside of the sandbox. Be aware, however, that this won’t be allowed in the Mac App Store, which requires that all code be sandboxed.