mirror of
https://github.com/electron/electron.git
synced 2026-04-10 03:01:51 -04:00
1fda08b8c8
* chore: bump chromium in DEPS to 142.0.7401.0
* 6911185: Reland "Send touch moves async immediately after scroll starts."
https://chromium-review.googlesource.com/c/chromium/src/+/6911185
* 6906887: mac: click through content area in main window
https://chromium-review.googlesource.com/c/chromium/src/+/6906887
* 6916667: Expose helper to eliminate duplicate recipes.
https://chromium-review.googlesource.com/c/chromium/src/+/6916667
* 6909842: Switch LegacyRenderWidgetHostHWND from atlcrack.h to msg_util.h.
https://chromium-review.googlesource.com/c/chromium/src/+/6909842
* 6884056: Remove the SecKeychain implementation for the Keychain interface
https://chromium-review.googlesource.com/c/chromium/src/+/6884056
* 6904906: Remove `WTF::` in renderer/core/[p-x].*/
https://chromium-review.googlesource.com/c/chromium/src/+/6904906
* 6556585: [persistent_cache]: PersistentCache for CodeCache
https://chromium-review.googlesource.com/c/chromium/src/+/6556585
* 6904864: Layout: Support abort on the text placeholder layout
https://chromium-review.googlesource.com/c/chromium/src/+/6904864
* chore: fixup patch indices
* chore: bump chromium in DEPS to 142.0.7402.0
* fixup! 6556585: [persistent_cache]: PersistentCache for CodeCache
* chore: fixup patch indices
* 6905244: [api] Remove deprecated `GetIsolate`
https://chromium-review.googlesource.com/c/v8/v8/+/6905244
* 6897694: Remove NativeTheme::UserHasContrastPreference().
https://chromium-review.googlesource.com/c/chromium/src/+/6897694
* 6897477: Remove GetPlatformHighContrastColorScheme() and enum.
https://chromium-review.googlesource.com/c/chromium/src/+/6897477
* 6918198: Reland "Rename display::Screen::GetScreen() to display::Screen::Get()"
https://chromium-review.googlesource.com/c/chromium/src/+/6918198
* 6907147: [LNA] add use counter for websocket mixed-content issues
https://chromium-review.googlesource.com/c/chromium/src/+/6907147
* 6914538: Replace WTF::String with blink::String
https://chromium-review.googlesource.com/c/website/+/6914538
* 6892538: [video pip] Allow touchscreen users to toggle live caption
https://chromium-review.googlesource.com/c/chromium/src/+/6892538
* chore: fix patch
* chore: bump chromium in DEPS to 142.0.7403.0
* build: remove ninja logs
* chore: fixup patch indices
* 6920670: [PDF] Change pdf_extension_util to return dictionaries
https://chromium-review.googlesource.com/c/chromium/src/+/6920670
* 6917864: Devirtualize and inline various NativeTheme getters.
https://chromium-review.googlesource.com/c/chromium/src/+/6917864
* 6920873: [PDF] Simplify PDFDocumentHelperClient::OnSaveURL()
https://chromium-review.googlesource.com/c/chromium/src/+/6920873
* build: don't kill blink/web_tests
* 6923655: Roll libc++ from 954086abf121 to b87b2bb112f8 (4 revisions)
https://chromium-review.googlesource.com/c/chromium/src/+/6923655
* 6905242: Reland "[CSP] Clarify report-only console messages."
https://chromium-review.googlesource.com/c/chromium/src/+/6905242
* fixup! 6897694: Remove NativeTheme::UserHasContrastPreference().
* chore: bump chromium in DEPS to 142.0.7405.0
* 6910012: [LNA] Enable LNA enforcement by default
https://chromium-review.googlesource.com/c/chromium/src/+/6910012
* 6929444: Combine GetInstanceForXXX() implementations.
https://chromium-review.googlesource.com/c/chromium/src/+/6929444
* 6927873: Rename native_widget_types.h -> native_ui_types.h
https://chromium-review.googlesource.com/c/chromium/src/+/6927873
* 6853978: Init perfetto really early in WebView
https://chromium-review.googlesource.com/c/chromium/src/+/6853978
* 6874886: Use only one picker observer to avoid getting duplicate notifications
https://chromium-review.googlesource.com/c/chromium/src/+/6874886
* chore: fixup patch indices
* fix: Protocol complex inline dtor
* chore: bump chromium in DEPS to 142.0.7407.0
* chore: bump chromium in DEPS to 142.0.7409.0
* chore: bump chromium in DEPS to 142.0.7411.0
* chore: bump chromium in DEPS to 142.0.7413.0
* fixup! 6905242: Reland "[CSP] Clarify report-only console messages."
* 6927233: Remove NativeTheme "use dark colors" bit.
https://chromium-review.googlesource.com/c/chromium/src/+/6927233
* chore: fixup patch indices
* 6899206: [PermissionOptions] Multi-state permission subscriptions & setting changes
https://chromium-review.googlesource.com/c/chromium/src/+/6899206
* chore: bump chromium in DEPS to 142.0.7415.0
* 6936895: [headless] Remove headless flag from views::Widget class
https://chromium-review.googlesource.com/c/chromium/src/+/6936895
We should probably followup on this to see if there is a way to do this without reverting this CL.
* 6937023: Reland "Use new DBus type system in dbus_xdg::Request"
https://chromium-review.googlesource.com/c/chromium/src/+/6937023
* chore: update patches
* 6944749: Add GN visibility list to //components/os_crypt/sync
https://chromium-review.googlesource.com/c/chromium/src/+/6944749
* Further replace sub_capture_target_version with CaptureVersion
https://chromium-review.googlesource.com/c/chromium/src/+/6935455
* fixup for lint
* chore: update filenames.libcxx.gni
* chore: bump chromium in DEPS to 142.0.7417.0
* 6944136: Reorder NativeTheme headers/.cc files.
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6944136
* 6939701: [DSSC][4] Make FSVCI objects aware of their capture-version-source
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6939701
* 6944404: Remove extraneous callback call
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6944404
* 6936124: [FPF-CI]: Introduce blink::NoiseToken for fingerprinting protection
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6936124
* chore: update patches
* fixup! 6927233: Remove NativeTheme "use dark colors" bit.
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6927233
* fixup! 6917864: Devirtualize and inline various NativeTheme getters.
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6917864
* 6937588: Add initial OsSettingsProvider object, supplying caret blink interval.
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6937588
* fixup! 6905242: Reland "[CSP] Clarify report-only console messages."
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6905242
* 6907515: Replace SingletonHwndObserver with a CallbackList on SingletonHwnd.
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6907515
* 6910482: [Save to Drive] Implement retry functionality
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6910482
* fixup! 6927233: Remove NativeTheme "use dark colors" bit.
Refs https://chromium-review.googlesource.com/c/chromium/src/+/6927233
* Revert "build: remove ninja logs"
This reverts commit 72874740fd.
* test: fix flakey test picked from PR 48205
---------
Co-authored-by: electron-roller[bot] <84116207+electron-roller[bot]@users.noreply.github.com>
Co-authored-by: Shelley Vohr <shelley.vohr@gmail.com>
Co-authored-by: John Kleinschmidt <jkleinsc@electronjs.org>
Co-authored-by: David Sanders <dsanders11@ucsbalum.com>
Co-authored-by: Alice Zhao <alicelovescake@anthropic.com>
464 lines
17 KiB
C++
464 lines
17 KiB
C++
// Copyright (c) 2016 GitHub, Inc.
|
|
// Use of this source code is governed by the MIT license that can be
|
|
// found in the LICENSE file.
|
|
|
|
#include "shell/browser/electron_permission_manager.h"
|
|
|
|
#include <memory>
|
|
#include <utility>
|
|
#include <vector>
|
|
|
|
#include "base/containers/to_vector.h"
|
|
#include "base/values.h"
|
|
#include "content/browser/permissions/permission_util.h" // nogncheck
|
|
#include "content/public/browser/child_process_security_policy.h"
|
|
#include "content/public/browser/global_routing_id.h"
|
|
#include "content/public/browser/permission_controller.h"
|
|
#include "content/public/browser/render_frame_host.h"
|
|
#include "content/public/browser/render_process_host.h"
|
|
#include "content/public/browser/render_view_host.h"
|
|
#include "content/public/browser/web_contents.h"
|
|
#include "gin/data_object_builder.h"
|
|
#include "shell/browser/api/electron_api_web_contents.h"
|
|
#include "shell/browser/electron_browser_context.h"
|
|
#include "shell/browser/electron_browser_main_parts.h"
|
|
#include "shell/browser/web_contents_permission_helper.h"
|
|
#include "shell/browser/web_contents_preferences.h"
|
|
#include "shell/common/gin_converters/content_converter.h"
|
|
#include "shell/common/gin_converters/frame_converter.h"
|
|
#include "shell/common/gin_converters/usb_protected_classes_converter.h"
|
|
#include "shell/common/gin_converters/value_converter.h"
|
|
#include "shell/common/gin_helper/dictionary.h"
|
|
#include "shell/common/gin_helper/event_emitter_caller.h"
|
|
#include "third_party/blink/public/common/permissions/permission_utils.h"
|
|
|
|
namespace electron {
|
|
|
|
namespace {
|
|
|
|
bool WebContentsDestroyed(content::RenderFrameHost* rfh) {
|
|
content::WebContents* web_contents =
|
|
content::WebContents::FromRenderFrameHost(rfh);
|
|
if (!web_contents)
|
|
return true;
|
|
return web_contents->IsBeingDestroyed();
|
|
}
|
|
|
|
void PermissionRequestResponseCallbackWrapper(
|
|
ElectronPermissionManager::StatusCallback callback,
|
|
const std::vector<content::PermissionResult>& vector) {
|
|
std::move(callback).Run(vector[0]);
|
|
}
|
|
|
|
} // namespace
|
|
|
|
class ElectronPermissionManager::PendingRequest {
|
|
public:
|
|
PendingRequest(content::RenderFrameHost* render_frame_host,
|
|
std::vector<blink::mojom::PermissionDescriptorPtr> permissions,
|
|
StatusesCallback callback)
|
|
: render_frame_host_id_(render_frame_host->GetGlobalId()),
|
|
callback_(std::move(callback)),
|
|
permissions_(std::move(permissions)),
|
|
results_(permissions_.size(),
|
|
content::PermissionResult(
|
|
blink::mojom::PermissionStatus::DENIED,
|
|
content::PermissionStatusSource::UNSPECIFIED)),
|
|
remaining_results_(permissions_.size()) {}
|
|
|
|
void SetPermissionStatus(int permission_id,
|
|
blink::mojom::PermissionStatus status) {
|
|
DCHECK(!IsComplete());
|
|
|
|
if (status == blink::mojom::PermissionStatus::GRANTED) {
|
|
const auto permission = blink::PermissionDescriptorToPermissionType(
|
|
permissions_[permission_id]);
|
|
if (permission == blink::PermissionType::MIDI_SYSEX) {
|
|
content::ChildProcessSecurityPolicy::GetInstance()
|
|
->GrantSendMidiSysExMessage(render_frame_host_id_.child_id);
|
|
} else if (permission == blink::PermissionType::GEOLOCATION) {
|
|
ElectronBrowserMainParts::Get()
|
|
->GetGeolocationControl()
|
|
->UserDidOptIntoLocationServices();
|
|
}
|
|
}
|
|
|
|
results_[permission_id] = content::PermissionResult(
|
|
status, content::PermissionStatusSource::UNSPECIFIED);
|
|
--remaining_results_;
|
|
}
|
|
|
|
content::RenderFrameHost* GetRenderFrameHost() {
|
|
return content::RenderFrameHost::FromID(render_frame_host_id_);
|
|
}
|
|
|
|
[[nodiscard]] bool IsComplete() const { return remaining_results_ == 0; }
|
|
|
|
void RunCallback() {
|
|
if (!callback_.is_null()) {
|
|
std::move(callback_).Run(results_);
|
|
}
|
|
}
|
|
|
|
private:
|
|
content::GlobalRenderFrameHostId render_frame_host_id_;
|
|
StatusesCallback callback_;
|
|
std::vector<blink::mojom::PermissionDescriptorPtr> permissions_;
|
|
std::vector<content::PermissionResult> results_;
|
|
size_t remaining_results_;
|
|
};
|
|
|
|
ElectronPermissionManager::ElectronPermissionManager() = default;
|
|
|
|
ElectronPermissionManager::~ElectronPermissionManager() = default;
|
|
|
|
void ElectronPermissionManager::SetPermissionRequestHandler(
|
|
const RequestHandler& handler) {
|
|
if (handler.is_null() && !pending_requests_.IsEmpty()) {
|
|
for (PendingRequestsMap::iterator iter(&pending_requests_); !iter.IsAtEnd();
|
|
iter.Advance()) {
|
|
auto* request = iter.GetCurrentValue();
|
|
if (!WebContentsDestroyed(request->GetRenderFrameHost()))
|
|
request->RunCallback();
|
|
}
|
|
pending_requests_.Clear();
|
|
}
|
|
request_handler_ = handler;
|
|
}
|
|
|
|
void ElectronPermissionManager::SetPermissionCheckHandler(
|
|
const CheckHandler& handler) {
|
|
check_handler_ = handler;
|
|
}
|
|
|
|
void ElectronPermissionManager::SetDevicePermissionHandler(
|
|
const DeviceCheckHandler& handler) {
|
|
device_permission_handler_ = handler;
|
|
}
|
|
|
|
void ElectronPermissionManager::SetProtectedUSBHandler(
|
|
const ProtectedUSBHandler& handler) {
|
|
protected_usb_handler_ = handler;
|
|
}
|
|
|
|
void ElectronPermissionManager::SetBluetoothPairingHandler(
|
|
const BluetoothPairingHandler& handler) {
|
|
bluetooth_pairing_handler_ = handler;
|
|
}
|
|
|
|
bool ElectronPermissionManager::HasPermissionRequestHandler() const {
|
|
return !request_handler_.is_null();
|
|
}
|
|
|
|
bool ElectronPermissionManager::HasPermissionCheckHandler() const {
|
|
return !check_handler_.is_null();
|
|
}
|
|
|
|
void ElectronPermissionManager::RequestPermissionWithDetails(
|
|
blink::mojom::PermissionDescriptorPtr permission,
|
|
content::RenderFrameHost* render_frame_host,
|
|
const GURL& requesting_origin,
|
|
bool user_gesture,
|
|
base::Value::Dict details,
|
|
StatusCallback response_callback) {
|
|
if (render_frame_host->IsNestedWithinFencedFrame()) {
|
|
std::move(response_callback)
|
|
.Run(content::PermissionResult(
|
|
blink::mojom::PermissionStatus::DENIED,
|
|
content::PermissionStatusSource::UNSPECIFIED));
|
|
return;
|
|
}
|
|
|
|
RequestPermissionsWithDetails(
|
|
render_frame_host,
|
|
content::PermissionRequestDescription(std::move(permission), user_gesture,
|
|
requesting_origin),
|
|
std::move(details),
|
|
base::BindOnce(PermissionRequestResponseCallbackWrapper,
|
|
std::move(response_callback)));
|
|
}
|
|
|
|
void ElectronPermissionManager::RequestPermissions(
|
|
content::RenderFrameHost* render_frame_host,
|
|
const content::PermissionRequestDescription& request_description,
|
|
StatusesCallback callback) {
|
|
if (render_frame_host->IsNestedWithinFencedFrame()) {
|
|
std::move(callback).Run(std::vector<content::PermissionResult>(
|
|
request_description.permissions.size(),
|
|
content::PermissionResult(
|
|
blink::mojom::PermissionStatus::DENIED,
|
|
content::PermissionStatusSource::UNSPECIFIED)));
|
|
return;
|
|
}
|
|
|
|
RequestPermissionsWithDetails(render_frame_host, request_description, {},
|
|
std::move(callback));
|
|
}
|
|
|
|
void ElectronPermissionManager::RequestPermissionsWithDetails(
|
|
content::RenderFrameHost* render_frame_host,
|
|
const content::PermissionRequestDescription& request_description,
|
|
base::Value::Dict details,
|
|
StatusesCallback response_callback) {
|
|
if (request_description.permissions.empty()) {
|
|
std::move(response_callback).Run({});
|
|
return;
|
|
}
|
|
|
|
auto permissions = base::ToVector(request_description.permissions,
|
|
[](const auto& permission_descriptor) {
|
|
return permission_descriptor.Clone();
|
|
});
|
|
|
|
if (request_handler_.is_null()) {
|
|
std::vector<content::PermissionResult> results;
|
|
for (const auto& permission : permissions) {
|
|
const auto permission_type =
|
|
blink::PermissionDescriptorToPermissionType(permission);
|
|
if (permission_type == blink::PermissionType::MIDI_SYSEX) {
|
|
content::ChildProcessSecurityPolicy::GetInstance()
|
|
->GrantSendMidiSysExMessage(
|
|
render_frame_host->GetProcess()->GetDeprecatedID());
|
|
} else if (permission_type == blink::PermissionType::GEOLOCATION) {
|
|
ElectronBrowserMainParts::Get()
|
|
->GetGeolocationControl()
|
|
->UserDidOptIntoLocationServices();
|
|
}
|
|
results.push_back(content::PermissionResult(
|
|
blink::mojom::PermissionStatus::GRANTED,
|
|
content::PermissionStatusSource::UNSPECIFIED));
|
|
}
|
|
std::move(response_callback).Run(results);
|
|
return;
|
|
}
|
|
|
|
auto* web_contents =
|
|
content::WebContents::FromRenderFrameHost(render_frame_host);
|
|
int request_id = pending_requests_.Add(std::make_unique<PendingRequest>(
|
|
render_frame_host, std::move(permissions), std::move(response_callback)));
|
|
|
|
details.Set("requestingUrl", render_frame_host->GetLastCommittedURL().spec());
|
|
details.Set("isMainFrame", render_frame_host->GetParent() == nullptr);
|
|
base::Value dict_value(std::move(details));
|
|
|
|
for (size_t i = 0; i < request_description.permissions.size(); ++i) {
|
|
const auto permission = blink::PermissionDescriptorToPermissionType(
|
|
request_description.permissions[i]);
|
|
const auto callback =
|
|
base::BindRepeating(&ElectronPermissionManager::OnPermissionResponse,
|
|
base::Unretained(this), request_id, i);
|
|
request_handler_.Run(web_contents, permission, callback, dict_value);
|
|
}
|
|
}
|
|
|
|
void ElectronPermissionManager::OnPermissionResponse(
|
|
int request_id,
|
|
int permission_id,
|
|
content::PermissionResult result) {
|
|
auto* pending_request = pending_requests_.Lookup(request_id);
|
|
if (!pending_request)
|
|
return;
|
|
|
|
pending_request->SetPermissionStatus(permission_id, result.status);
|
|
if (pending_request->IsComplete()) {
|
|
pending_request->RunCallback();
|
|
pending_requests_.Remove(request_id);
|
|
}
|
|
}
|
|
|
|
void ElectronPermissionManager::ResetPermission(
|
|
blink::PermissionType permission,
|
|
const GURL& requesting_origin,
|
|
const GURL& embedding_origin) {}
|
|
|
|
void ElectronPermissionManager::RequestPermissionsFromCurrentDocument(
|
|
content::RenderFrameHost* render_frame_host,
|
|
const content::PermissionRequestDescription& request_description,
|
|
base::OnceCallback<void(const std::vector<content::PermissionResult>&)>
|
|
callback) {
|
|
if (render_frame_host->IsNestedWithinFencedFrame()) {
|
|
std::move(callback).Run(std::vector<content::PermissionResult>(
|
|
request_description.permissions.size(),
|
|
content::PermissionResult(
|
|
blink::mojom::PermissionStatus::DENIED,
|
|
content::PermissionStatusSource::UNSPECIFIED)));
|
|
return;
|
|
}
|
|
|
|
RequestPermissionsWithDetails(render_frame_host, request_description, {},
|
|
std::move(callback));
|
|
}
|
|
|
|
blink::mojom::PermissionStatus ElectronPermissionManager::GetPermissionStatus(
|
|
const blink::mojom::PermissionDescriptorPtr& permission_descriptor,
|
|
const GURL& requesting_origin,
|
|
const GURL& embedding_origin) {
|
|
const auto permission =
|
|
blink::PermissionDescriptorToPermissionType(permission_descriptor);
|
|
base::Value::Dict details;
|
|
details.Set("embeddingOrigin", embedding_origin.spec());
|
|
bool granted = CheckPermissionWithDetails(permission, {}, requesting_origin,
|
|
std::move(details));
|
|
return granted ? blink::mojom::PermissionStatus::GRANTED
|
|
: blink::mojom::PermissionStatus::DENIED;
|
|
}
|
|
|
|
content::PermissionResult
|
|
ElectronPermissionManager::GetPermissionResultForOriginWithoutContext(
|
|
const blink::mojom::PermissionDescriptorPtr& permission_descriptor,
|
|
const url::Origin& requesting_origin,
|
|
const url::Origin& embedding_origin) {
|
|
blink::mojom::PermissionStatus status =
|
|
GetPermissionStatus(permission_descriptor, requesting_origin.GetURL(),
|
|
embedding_origin.GetURL());
|
|
return content::PermissionResult(status);
|
|
}
|
|
|
|
void ElectronPermissionManager::CheckBluetoothDevicePair(
|
|
gin_helper::Dictionary details,
|
|
PairCallback pair_callback) const {
|
|
if (bluetooth_pairing_handler_.is_null()) {
|
|
base::Value::Dict response;
|
|
response.Set("confirmed", false);
|
|
std::move(pair_callback).Run(std::move(response));
|
|
} else {
|
|
bluetooth_pairing_handler_.Run(details, std::move(pair_callback));
|
|
}
|
|
}
|
|
|
|
bool ElectronPermissionManager::CheckPermissionWithDetails(
|
|
blink::PermissionType permission,
|
|
content::RenderFrameHost* render_frame_host,
|
|
const GURL& requesting_origin,
|
|
base::Value::Dict details) const {
|
|
if (check_handler_.is_null()) {
|
|
if (permission == blink::PermissionType::DEPRECATED_SYNC_CLIPBOARD_READ) {
|
|
return false;
|
|
} else {
|
|
return true;
|
|
}
|
|
}
|
|
|
|
auto* web_contents =
|
|
render_frame_host
|
|
? content::WebContents::FromRenderFrameHost(render_frame_host)
|
|
: nullptr;
|
|
if (render_frame_host) {
|
|
details.Set("requestingUrl",
|
|
render_frame_host->GetLastCommittedURL().spec());
|
|
}
|
|
details.Set("isMainFrame",
|
|
render_frame_host && render_frame_host->GetParent() == nullptr);
|
|
switch (permission) {
|
|
case blink::PermissionType::AUDIO_CAPTURE:
|
|
details.Set("mediaType", "audio");
|
|
break;
|
|
case blink::PermissionType::VIDEO_CAPTURE:
|
|
details.Set("mediaType", "video");
|
|
break;
|
|
default:
|
|
break;
|
|
}
|
|
return check_handler_.Run(web_contents, permission, requesting_origin,
|
|
base::Value(std::move(details)));
|
|
}
|
|
|
|
bool ElectronPermissionManager::CheckDevicePermission(
|
|
blink::PermissionType permission,
|
|
const url::Origin& origin,
|
|
const base::Value& device,
|
|
ElectronBrowserContext* browser_context) const {
|
|
if (device_permission_handler_.is_null())
|
|
return browser_context->CheckDevicePermission(origin, device, permission);
|
|
|
|
v8::Isolate* isolate = JavascriptEnvironment::GetIsolate();
|
|
v8::HandleScope scope(isolate);
|
|
v8::Local<v8::Object> details = gin::DataObjectBuilder(isolate)
|
|
.Set("deviceType", permission)
|
|
.Set("origin", origin.Serialize())
|
|
.Set("device", device.Clone())
|
|
.Build();
|
|
return device_permission_handler_.Run(details);
|
|
}
|
|
|
|
void ElectronPermissionManager::GrantDevicePermission(
|
|
blink::PermissionType permission,
|
|
const url::Origin& origin,
|
|
const base::Value& device,
|
|
ElectronBrowserContext* browser_context) const {
|
|
if (device_permission_handler_.is_null()) {
|
|
browser_context->GrantDevicePermission(origin, device, permission);
|
|
}
|
|
}
|
|
|
|
void ElectronPermissionManager::RevokeDevicePermission(
|
|
blink::PermissionType permission,
|
|
const url::Origin& origin,
|
|
const base::Value& device,
|
|
ElectronBrowserContext* browser_context) const {
|
|
browser_context->RevokeDevicePermission(origin, device, permission);
|
|
}
|
|
|
|
ElectronPermissionManager::USBProtectedClasses
|
|
ElectronPermissionManager::CheckProtectedUSBClasses(
|
|
const USBProtectedClasses& classes) const {
|
|
if (protected_usb_handler_.is_null())
|
|
return classes;
|
|
|
|
v8::Isolate* isolate = JavascriptEnvironment::GetIsolate();
|
|
v8::HandleScope scope(isolate);
|
|
v8::Local<v8::Object> details =
|
|
gin::DataObjectBuilder(isolate).Set("protectedClasses", classes).Build();
|
|
return protected_usb_handler_.Run(details);
|
|
}
|
|
|
|
content::PermissionResult
|
|
ElectronPermissionManager::GetPermissionResultForCurrentDocument(
|
|
const blink::mojom::PermissionDescriptorPtr& permission_descriptor,
|
|
content::RenderFrameHost* render_frame_host,
|
|
bool should_include_device_status) {
|
|
if (render_frame_host->IsNestedWithinFencedFrame())
|
|
return content::PermissionResult(blink::mojom::PermissionStatus::DENIED);
|
|
|
|
const auto permission =
|
|
blink::PermissionDescriptorToPermissionType(permission_descriptor);
|
|
base::Value::Dict details;
|
|
details.Set("embeddingOrigin",
|
|
content::PermissionUtil::GetLastCommittedOriginAsURL(
|
|
render_frame_host->GetMainFrame())
|
|
.spec());
|
|
bool granted = CheckPermissionWithDetails(
|
|
permission, render_frame_host,
|
|
render_frame_host->GetLastCommittedOrigin().GetURL(), std::move(details));
|
|
return granted ? content::PermissionResult(
|
|
blink::mojom::PermissionStatus::GRANTED)
|
|
: content::PermissionResult(
|
|
blink::mojom::PermissionStatus::DENIED);
|
|
}
|
|
|
|
content::PermissionResult
|
|
ElectronPermissionManager::GetPermissionResultForWorker(
|
|
const blink::mojom::PermissionDescriptorPtr& permission_descriptor,
|
|
content::RenderProcessHost* render_process_host,
|
|
const GURL& worker_origin) {
|
|
blink::mojom::PermissionStatus status =
|
|
GetPermissionStatus(permission_descriptor, worker_origin, worker_origin);
|
|
return content::PermissionResult(status);
|
|
}
|
|
|
|
content::PermissionResult
|
|
ElectronPermissionManager::GetPermissionResultForEmbeddedRequester(
|
|
const blink::mojom::PermissionDescriptorPtr& permission_descriptor,
|
|
content::RenderFrameHost* render_frame_host,
|
|
const url::Origin& requesting_origin) {
|
|
if (render_frame_host->IsNestedWithinFencedFrame())
|
|
return content::PermissionResult(blink::mojom::PermissionStatus::DENIED);
|
|
|
|
blink::mojom::PermissionStatus status =
|
|
GetPermissionStatus(permission_descriptor, requesting_origin.GetURL(),
|
|
render_frame_host->GetLastCommittedOrigin().GetURL());
|
|
return content::PermissionResult(status);
|
|
}
|
|
|
|
} // namespace electron
|