If you are setting up an app like your default browser or email client, you are probably trusted with your data. However, you must grant permission manually for everything. Starting with Android Q, permissions are granted automatically as presets based on which they are default.

Android Q gives a new function called 'Roles,'; allows the OS access to elevated system functions based on well understood usage cases. "There are seven roles to start with:

  • ROLE_BROWSER : The applications are set as the system browser of the web application 's applications.
  • ROLE_SMS : The SMS app to send and receive text messages (shocker, I know), and read contacts.
  • ROLE_HOME : is for the default address app
  • ROLE_MUSIC : Full control by default music app on files in folder 's music in internal storage, even files created by other apps.
  • ROLE_GALLERY : Full access to the default photo app on files in the media directory 'Photos and Videos', again including files created by other apps. There is no data about what it allows or what it allows. set a default for emergency information, so perhaps this is the role of the failure.

Google will certainly add more roles to the time, but this is a nice change. Users should have fewer permissions for the roles, and more predictable functionality for developers.

  • Source:
  • Android Developers (1
    ,
  • 2)