#include "components/permissions/permission_manager.h"
#include <memory>
#include <utility>
#include "base/feature_list.h"
#include "base/functional/bind.h"
#include "base/functional/callback.h"
#include "base/memory/raw_ptr.h"
#include "base/ranges/algorithm.h"
#include "build/build_config.h"
#include "build/chromeos_buildflags.h"
#include "components/content_settings/core/browser/host_content_settings_map.h"
#include "components/content_settings/core/common/content_settings_pattern.h"
#include "components/permissions/features.h"
#include "components/permissions/permission_context_base.h"
#include "components/permissions/permission_request_id.h"
#include "components/permissions/permission_result.h"
#include "components/permissions/permission_uma_util.h"
#include "components/permissions/permission_util.h"
#include "components/permissions/permissions_client.h"
#include "content/public/browser/browser_context.h"
#include "content/public/browser/browser_thread.h"
#include "content/public/browser/permission_controller.h"
#include "content/public/browser/render_frame_host.h"
#include "content/public/browser/render_process_host.h"
#include "content/public/browser/web_contents.h"
#include "third_party/blink/public/common/permissions/permission_utils.h"
#include "third_party/blink/public/mojom/permissions/permission_status.mojom.h"
#include "url/origin.h"
using blink::PermissionType;
using blink::mojom::PermissionStatus;
namespace permissions {
namespace {
void SubscriptionCallbackWrapper(
base::OnceCallback<void(PermissionStatus)> callback,
ContentSetting content_setting) {
std::move(callback).Run(
PermissionUtil::ContentSettingToPermissionStatus(content_setting));
}
void PermissionStatusVectorCallbackWrapper(
base::OnceCallback<void(const std::vector<PermissionStatus>&)> callback,
const std::vector<ContentSetting>& content_settings) {
std::vector<PermissionStatus> permission_statuses;
base::ranges::transform(content_settings, back_inserter(permission_statuses),
PermissionUtil::ContentSettingToPermissionStatus);
std::move(callback).Run(permission_statuses);
}
GURL GetEmbeddingOrigin(content::RenderFrameHost* const render_frame_host,
const GURL& requesting_origin) {
content::WebContents* const web_contents =
content::WebContents::FromRenderFrameHost(render_frame_host);
DCHECK(web_contents);
if (PermissionsClient::Get()->DoURLsMatchNewTabPage(
requesting_origin,
web_contents->GetLastCommittedURL().DeprecatedGetOriginAsURL())) {
return web_contents->GetLastCommittedURL().DeprecatedGetOriginAsURL();
} else {
return PermissionUtil::GetLastCommittedOriginAsURL(
render_frame_host->GetMainFrame());
}
}
}
class PermissionManager::PendingRequest {
public:
PendingRequest(
content::RenderFrameHost* render_frame_host,
const std::vector<ContentSettingsType>& permissions,
base::OnceCallback<void(const std::vector<ContentSetting>&)> callback)
: render_process_id_(render_frame_host->GetProcess()->GetID()),
render_frame_id_(render_frame_host->GetRoutingID()),
callback_(std::move(callback)),
permissions_(permissions),
results_(permissions.size(), CONTENT_SETTING_BLOCK),
remaining_results_(permissions.size()) {}
void SetContentSetting(int permission_id, ContentSetting content_setting) {
DCHECK(!IsComplete());
results_[permission_id] = content_setting;
--remaining_results_;
}
bool IsComplete() const { return remaining_results_ == 0; }
int render_process_id() const { return render_process_id_; }
int render_frame_id() const { return render_frame_id_; }
base::OnceCallback<void(const std::vector<ContentSetting>&)> TakeCallback() {
return std::move(callback_);
}
std::vector<ContentSettingsType> permissions() const { return permissions_; }
std::vector<ContentSetting> results() const { return results_; }
private:
int render_process_id_;
int render_frame_id_;
base::OnceCallback<void(const std::vector<ContentSetting>&)> callback_;
std::vector<ContentSettingsType> permissions_;
std::vector<ContentSetting> results_;
size_t remaining_results_;
};
class PermissionManager::PermissionResponseCallback {
public:
PermissionResponseCallback(PermissionManager* permission_manager,
PendingRequestLocalId request_local_id,
int permission_id)
: permission_manager_(permission_manager),
request_local_id_(request_local_id),
permission_id_(permission_id),
request_answered_(false) {}
PermissionResponseCallback(const PermissionResponseCallback&) = delete;
PermissionResponseCallback& operator=(const PermissionResponseCallback&) =
delete;
~PermissionResponseCallback() {
if (!request_answered_ &&
permission_manager_->pending_requests_.Lookup(request_local_id_)) {
permission_manager_->pending_requests_.Remove(request_local_id_);
}
}
void OnPermissionsRequestResponseStatus(ContentSetting content_setting) {
request_answered_ = true;
permission_manager_->OnPermissionsRequestResponseStatus(
request_local_id_, permission_id_, content_setting);
}
private:
raw_ptr<PermissionManager> permission_manager_;
PendingRequestLocalId request_local_id_;
int permission_id_;
bool request_answered_;
};
struct PermissionManager::Subscription {
ContentSettingsType permission;
GURL requesting_origin;
int render_frame_id = -1;
int render_process_id = -1;
base::RepeatingCallback<void(ContentSetting)> callback;
ContentSetting current_value;
};
PermissionManager::PermissionManager(content::BrowserContext* browser_context,
PermissionContextMap permission_contexts)
: browser_context_(browser_context),
permission_contexts_(std::move(permission_contexts)) {
auto* autoblocker =
permissions::PermissionsClient::Get()->GetPermissionDecisionAutoBlocker(
browser_context_);
if (autoblocker) {
autoblocker->AddObserver(this);
}
}
PermissionManager::~PermissionManager() {
DCHECK(pending_requests_.IsEmpty());
DCHECK(subscriptions_.IsEmpty());
}
void PermissionManager::Shutdown() {
is_shutting_down_ = true;
if (!subscriptions_.IsEmpty()) {
subscriptions_.Clear();
for (const auto& type_to_count : subscription_type_counts_) {
if (type_to_count.second > 0) {
PermissionContextBase* context =
GetPermissionContext(type_to_count.first);
context->RemoveObserver(this);
}
}
subscription_type_counts_.clear();
}
permission_contexts_.clear();
auto* autoblocker =
permissions::PermissionsClient::Get()->GetPermissionDecisionAutoBlocker(
browser_context_);
if (autoblocker) {
autoblocker->RemoveObserver(this);
}
}
void PermissionManager::OnEmbargoStarted(const GURL& origin,
ContentSettingsType content_setting) {
auto primary_pattern = ContentSettingsPattern::FromURLNoWildcard(origin);
OnPermissionChanged(primary_pattern, ContentSettingsPattern::Wildcard(),
ContentSettingsTypeSet(content_setting));
}
PermissionContextBase* PermissionManager::GetPermissionContextForTesting(
ContentSettingsType type) {
return GetPermissionContext(type);
}
PermissionContextBase* PermissionManager::GetPermissionContext(
ContentSettingsType type) {
const auto& it = permission_contexts_.find(type);
return it == permission_contexts_.end() ? nullptr : it->second.get();
}
void PermissionManager::RequestPermission(
PermissionType permission,
content::RenderFrameHost* render_frame_host,
const GURL& requesting_origin,
bool user_gesture,
base::OnceCallback<void(PermissionStatus)> callback) {
NOTIMPLEMENTED();
}
void PermissionManager::RequestPermissions(
const std::vector<PermissionType>& permissions_types,
content::RenderFrameHost* render_frame_host,
const GURL& requesting_origin,
bool user_gesture,
base::OnceCallback<void(const std::vector<PermissionStatus>&)>
permission_status_callback) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
RequestPermissionsInternal(permissions_types, render_frame_host,
requesting_origin, user_gesture,
std::move(permission_status_callback));
}
void PermissionManager::RequestPermissionsInternal(
const std::vector<blink::PermissionType>& permissions_types,
content::RenderFrameHost* render_frame_host,
const GURL& requesting_origin,
bool user_gesture,
base::OnceCallback<void(const std::vector<blink::mojom::PermissionStatus>&)>
permission_status_callback) {
std::vector<ContentSettingsType> permissions;
base::ranges::transform(permissions_types, back_inserter(permissions),
PermissionUtil::PermissionTypeToContentSettingType);
base::OnceCallback<void(const std::vector<ContentSetting>&)> callback =
base::BindOnce(&PermissionStatusVectorCallbackWrapper,
std::move(permission_status_callback));
if (permissions.empty()) {
std::move(callback).Run(std::vector<ContentSetting>());
return;
}
auto request_local_id = request_local_id_generator_.GenerateNextId();
pending_requests_.AddWithID(
std::make_unique<PendingRequest>(render_frame_host, permissions,
std::move(callback)),
request_local_id);
const PermissionRequestID request_id(render_frame_host, request_local_id);
const GURL embedding_origin =
GetEmbeddingOrigin(render_frame_host, requesting_origin);
for (size_t i = 0; i < permissions.size(); ++i) {
const ContentSettingsType permission = permissions[i];
const GURL canonical_requesting_origin = PermissionUtil::GetCanonicalOrigin(
permission, requesting_origin, embedding_origin);
auto response_callback =
std::make_unique<PermissionResponseCallback>(this, request_local_id, i);
if (PermissionUtil::IsPermissionBlockedInPartition(
permission, requesting_origin, render_frame_host->GetProcess())) {
response_callback->OnPermissionsRequestResponseStatus(
CONTENT_SETTING_BLOCK);
continue;
}
PermissionContextBase* context = GetPermissionContext(permission);
DCHECK(context);
context->RequestPermission(
request_id, canonical_requesting_origin, user_gesture,
base::BindOnce(
&PermissionResponseCallback::OnPermissionsRequestResponseStatus,
std::move(response_callback)));
}
}
void PermissionManager::ResetPermission(PermissionType permission,
const GURL& requesting_origin,
const GURL& embedding_origin) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
ContentSettingsType type =
PermissionUtil::PermissionTypeToContentSettingType(permission);
PermissionContextBase* context = GetPermissionContext(type);
if (!context)
return;
context->ResetPermission(PermissionUtil::GetCanonicalOrigin(
type, requesting_origin, embedding_origin),
embedding_origin.DeprecatedGetOriginAsURL());
}
void PermissionManager::RequestPermissionsFromCurrentDocument(
const std::vector<PermissionType>& permissions_types,
content::RenderFrameHost* render_frame_host,
bool user_gesture,
base::OnceCallback<void(const std::vector<blink::mojom::PermissionStatus>&)>
permission_status_callback) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
const GURL requesting_origin =
PermissionUtil::GetLastCommittedOriginAsURL(render_frame_host);
RequestPermissionsInternal(permissions_types, render_frame_host,
requesting_origin, user_gesture,
std::move(permission_status_callback));
}
PermissionStatus PermissionManager::GetPermissionStatus(
PermissionType permission,
const GURL& requesting_origin,
const GURL& embedding_origin) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
PermissionResult result = GetPermissionStatusInternal(
PermissionUtil::PermissionTypeToContentSettingType(permission),
nullptr,
nullptr, requesting_origin, embedding_origin);
return PermissionUtil::ContentSettingToPermissionStatus(
result.content_setting);
}
content::PermissionResult
PermissionManager::GetPermissionResultForOriginWithoutContext(
blink::PermissionType permission,
const url::Origin& origin) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
PermissionResult result = GetPermissionStatusInternal(
PermissionUtil::PermissionTypeToContentSettingType(permission),
nullptr,
nullptr, origin.GetURL(), origin.GetURL());
return PermissionUtil::ToContentPermissionResult(result);
}
PermissionStatus PermissionManager::GetPermissionStatusForCurrentDocument(
PermissionType permission,
content::RenderFrameHost* render_frame_host) {
return GetPermissionResultForCurrentDocument(permission, render_frame_host)
.status;
}
content::PermissionResult
PermissionManager::GetPermissionResultForCurrentDocument(
blink::PermissionType permission,
content::RenderFrameHost* render_frame_host) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
ContentSettingsType type =
PermissionUtil::PermissionTypeToContentSettingType(permission);
const GURL requesting_origin =
PermissionUtil::GetLastCommittedOriginAsURL(render_frame_host);
const GURL embedding_origin =
GetEmbeddingOrigin(render_frame_host, requesting_origin);
PermissionResult result = GetPermissionStatusInternal(
type,
nullptr, render_frame_host, requesting_origin,
embedding_origin);
return PermissionUtil::ToContentPermissionResult(result);
}
PermissionStatus PermissionManager::GetPermissionStatusForWorker(
PermissionType permission,
content::RenderProcessHost* render_process_host,
const GURL& worker_origin) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
ContentSettingsType type =
PermissionUtil::PermissionTypeToContentSettingType(permission);
PermissionResult result = GetPermissionStatusInternal(
type, render_process_host,
nullptr, worker_origin, worker_origin);
return PermissionUtil::ContentSettingToPermissionStatus(
result.content_setting);
}
blink::mojom::PermissionStatus
PermissionManager::GetPermissionStatusForEmbeddedRequester(
blink::PermissionType permission,
content::RenderFrameHost* render_frame_host,
const url::Origin& requesting_origin) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
ContentSettingsType type =
PermissionUtil::PermissionTypeToContentSettingType(permission);
const GURL embedding_origin =
GetEmbeddingOrigin(render_frame_host, requesting_origin.GetURL());
PermissionResult result = GetPermissionStatusInternal(
type,
nullptr, render_frame_host,
requesting_origin.GetURL(), embedding_origin);
return PermissionUtil::ToContentPermissionResult(result).status;
}
bool PermissionManager::IsPermissionOverridable(
PermissionType permission,
const absl::optional<url::Origin>& origin) {
ContentSettingsType type =
PermissionUtil::PermissionTypeToContentSettingTypeSafe(permission);
PermissionContextBase* context = GetPermissionContext(type);
if (!context || context->IsPermissionKillSwitchOn())
return false;
return !origin || context->IsPermissionAvailableToOrigins(origin->GetURL(),
origin->GetURL());
}
PermissionManager::SubscriptionId
PermissionManager::SubscribePermissionStatusChange(
PermissionType permission,
content::RenderProcessHost* render_process_host,
content::RenderFrameHost* render_frame_host,
const GURL& requesting_origin,
base::RepeatingCallback<void(PermissionStatus)> callback) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
DCHECK(!render_frame_host || !render_process_host);
if (is_shutting_down_)
return SubscriptionId();
ContentSettingsType content_type =
PermissionUtil::PermissionTypeToContentSettingType(permission);
auto& type_count = subscription_type_counts_[content_type];
if (type_count == 0) {
PermissionContextBase* context = GetPermissionContext(content_type);
context->AddObserver(this);
}
++type_count;
auto subscription = std::make_unique<Subscription>();
GURL embedding_origin;
if (render_frame_host) {
DCHECK_NE(render_frame_host->GetLifecycleState(),
content::RenderFrameHost::LifecycleState::kPrerendering);
embedding_origin = GetEmbeddingOrigin(render_frame_host, requesting_origin);
subscription->render_frame_id = render_frame_host->GetRoutingID();
subscription->render_process_id = render_frame_host->GetProcess()->GetID();
subscription->current_value =
GetPermissionStatusInternal(content_type,
nullptr,
render_frame_host, requesting_origin,
embedding_origin)
.content_setting;
} else {
embedding_origin = requesting_origin;
subscription->render_frame_id = -1;
subscription->render_process_id =
render_process_host ? render_process_host->GetID() : -1;
subscription->current_value =
GetPermissionStatusInternal(content_type, render_process_host,
nullptr,
requesting_origin, embedding_origin)
.content_setting;
}
subscription->permission = content_type;
subscription->requesting_origin = PermissionUtil::GetCanonicalOrigin(
content_type, requesting_origin, embedding_origin);
subscription->callback =
base::BindRepeating(&SubscriptionCallbackWrapper, std::move(callback));
auto id = subscription_id_generator_.GenerateNextId();
subscriptions_.AddWithID(std::move(subscription), id);
return id;
}
void PermissionManager::UnsubscribePermissionStatusChange(
SubscriptionId subscription_id) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
if (is_shutting_down_)
return;
Subscription* subscription = subscriptions_.Lookup(subscription_id);
if (!subscription)
return;
ContentSettingsType type = subscription->permission;
subscriptions_.Remove(subscription_id);
auto type_count = subscription_type_counts_.find(type);
CHECK(type_count != subscription_type_counts_.end());
CHECK_GT(type_count->second, size_t(0));
type_count->second--;
if (type_count->second == 0) {
PermissionContextBase* context = GetPermissionContext(type);
context->RemoveObserver(this);
}
}
void PermissionManager::OnPermissionsRequestResponseStatus(
PendingRequestLocalId request_local_id,
int permission_id,
ContentSetting content_setting) {
PendingRequest* pending_request = pending_requests_.Lookup(request_local_id);
if (!pending_request)
return;
pending_request->SetContentSetting(permission_id, content_setting);
if (!pending_request->IsComplete())
return;
pending_request->TakeCallback().Run(pending_request->results());
pending_requests_.Remove(request_local_id);
}
void PermissionManager::OnPermissionChanged(
const ContentSettingsPattern& primary_pattern,
const ContentSettingsPattern& secondary_pattern,
ContentSettingsTypeSet content_type_set) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
DCHECK(primary_pattern.IsValid());
DCHECK(secondary_pattern.IsValid());
std::vector<base::OnceClosure> callbacks;
callbacks.reserve(subscriptions_.size());
for (SubscriptionsMap::iterator iter(&subscriptions_); !iter.IsAtEnd();
iter.Advance()) {
Subscription* subscription = iter.GetCurrentValue();
if (!content_type_set.Contains(subscription->permission))
continue;
content::RenderFrameHost* rfh = content::RenderFrameHost::FromID(
subscription->render_process_id, subscription->render_frame_id);
GURL embedding_origin;
GURL requesting_origin = subscription->requesting_origin;
if (rfh) {
embedding_origin =
GetEmbeddingOrigin(rfh, subscription->requesting_origin);
} else {
embedding_origin = subscription->requesting_origin;
}
if (!primary_pattern.Matches(requesting_origin) ||
!secondary_pattern.Matches(embedding_origin)) {
continue;
}
content::RenderProcessHost* rph =
rfh ? nullptr
: content::RenderProcessHost::FromID(
subscription->render_process_id);
ContentSetting new_value =
GetPermissionStatusInternal(subscription->permission, rph, rfh,
subscription->requesting_origin,
embedding_origin)
.content_setting;
if (subscription->current_value == new_value)
continue;
subscription->current_value = new_value;
callbacks.push_back(base::BindOnce(subscription->callback, new_value));
}
for (auto& callback : callbacks)
std::move(callback).Run();
}
PermissionResult PermissionManager::GetPermissionStatusInternal(
ContentSettingsType permission,
content::RenderProcessHost* render_process_host,
content::RenderFrameHost* render_frame_host,
const GURL& requesting_origin,
const GURL& embedding_origin) {
DCHECK(!render_process_host || !render_frame_host);
content::RenderProcessHost* rph =
render_frame_host ? render_frame_host->GetProcess() : render_process_host;
if (rph && PermissionUtil::IsPermissionBlockedInPartition(
permission, requesting_origin, rph)) {
return PermissionResult(CONTENT_SETTING_BLOCK,
PermissionStatusSource::UNSPECIFIED);
}
GURL canonical_requesting_origin = PermissionUtil::GetCanonicalOrigin(
permission, requesting_origin, embedding_origin);
PermissionContextBase* context = GetPermissionContext(permission);
PermissionResult result = context->GetPermissionStatus(
render_frame_host, canonical_requesting_origin.DeprecatedGetOriginAsURL(),
embedding_origin.DeprecatedGetOriginAsURL());
result = context->UpdatePermissionStatusWithDeviceStatus(
result, requesting_origin, embedding_origin);
DCHECK(result.content_setting == CONTENT_SETTING_ALLOW ||
result.content_setting == CONTENT_SETTING_ASK ||
result.content_setting == CONTENT_SETTING_BLOCK);
return result;
}
}
