In our Mac App we have following credential to entitlement.plist which enables us to read/write to user's file system followed by file browser dialogue:
com.apple.security.files.user-selected.read-write That does mean we able to read/write a file/folder if once accessed by file browser dialogue. We never able to read/write to files/folder if not accessed by file browser dialogue at least once in an application life cycle.
I didn't found any other possible credential too to entitlement.plist which can enable us read/write to files/folder by completely removing any use of file browser dialogue. Is there any way we can achieve this?
To give some more information, our application is an IDE which involves arbitrary file/folder access by user or automatic. By automatic I mean accessing files/folders through previously opened items which need not to open a file browser dialogue. The location can be anywhere in user's system. I noticed that setting app sandbox to false enabling me access arbitrary files/folders without file browser dialogue. Is such entitlement value is acceptable at all?