mirrors/electron
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

refactor: clean up the default app implementation (#14719)

Browse source 
* Disable nodeIntegration
* Enable contextIsolation
* Re-implement the CSP security check to handle running in
contextIsolation
* Disable bad DCHECKS for the promise helper
* Remove the unused "-d" flag for the electron binary
* Added a way to hide the default help output for electron devs who
don't want to see it every time
This commit is contained in:
Samuel Attard 2018-09-21 15:24:42 +10:00 committed by GitHub
parent a24307b8e8
commit 32a9df2940
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
10 changed files with 346 additions and 296 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
atom/common/promise_util.cc
View file

@ -11,7 +11,6 @@ namespace atom {
namespace util { namespace util {
Promise::Promise(v8::Isolate* isolate) { Promise::Promise(v8::Isolate* isolate) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
isolate_ = isolate; isolate_ = isolate;
resolver_.Reset(isolate, v8::Promise::Resolver::New(isolate)); resolver_.Reset(isolate, v8::Promise::Resolver::New(isolate));
} }

1
atom/common/promise_util.h
View file

@ -52,7 +52,6 @@ class Promise {
private: private:
v8::Local<v8::Promise::Resolver> GetInner() const { v8::Local<v8::Promise::Resolver> GetInner() const {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
return resolver_.Get(isolate()); return resolver_.Get(isolate());
} }

12
default_app/default_app.js
View file

@ -8,19 +8,24 @@ app.on('window-all-closed', () => {
app.quit() app.quit()
}) })
exports.load = (appUrl) => { exports.load = async (appUrl) => {
app.on('ready', () => { await app.whenReady()
const options = { const options = {
width: 900, width: 900,
height: 600, height: 600,
autoHideMenuBar: true, autoHideMenuBar: true,
backgroundColor: '#FFFFFF', backgroundColor: '#FFFFFF',
webPreferences: { webPreferences: {
nodeIntegrationInWorker: true contextIsolation: true,
nodeIntegration: false,
preload: path.resolve(__dirname, 'renderer.js'),
webviewTag: false
}, },
useContentSize: true, useContentSize: true,
show: false show: false
} }
if (process.platform === 'linux') { if (process.platform === 'linux') {
options.icon = path.join(__dirname, 'icon.png') options.icon = path.join(__dirname, 'icon.png')
} }
@ -31,5 +36,4 @@ exports.load = (appUrl) => {
mainWindow.loadURL(appUrl) mainWindow.loadURL(appUrl)
mainWindow.focus() mainWindow.focus()
})
} }

2
default_app/index.html
View file

@ -83,8 +83,6 @@
</div> </div>
</div> </div>
</nav> </nav>
<script src="./renderer.js"></script>
</body> </body>
</html> </html>

255
default_app/main.js
View file

@ -1,50 +1,62 @@
const { app, dialog, shell, Menu } = require('electron') const { app, dialog } = require('electron')
const fs = require('fs') const fs = require('fs')
const Module = require('module') const Module = require('module')
const path = require('path') const path = require('path')
const url = require('url') const url = require('url')
const { setDefaultApplicationMenu } = require('./menu')
// Parse command line options. // Parse command line options.
const argv = process.argv.slice(1) const argv = process.argv.slice(1)
const option = { const option = {
file: null, file: null,
help: null, noHelp: Boolean(process.env.ELECTRON_NO_HELP),
default: null,
version: null, version: null,
webdriver: null, webdriver: null,
modules: [] modules: []
} }
for (let i = 0; i < argv.length; i++) { let nextArgIsRequire = false
if (argv[i] === '--version' || argv[i] === '-v') {
for (const arg of argv) {
if (nextArgIsRequire) {
option.modules.push(arg)
nextArgIsRequire = false
continue
} else if (arg === '--version' || arg === '-v') {
option.version = true option.version = true
break break
} else if (argv[i].match(/^--app=/)) { } else if (arg.match(/^--app=/)) {
option.file = argv[i].split('=')[1] option.file = arg.split('=')[1]
break break
} else if (argv[i] === '--default' || argv[i] === '-d') { } else if (arg === '--interactive' || arg === '-i' || arg === '-repl') {
option.default = true
break
} else if (argv[i] === '--interactive' || argv[i] === '-i' || argv[i] === '-repl') {
option.interactive = true option.interactive = true
} else if (argv[i] === '--test-type=webdriver') { } else if (arg === '--test-type=webdriver') {
option.webdriver = true option.webdriver = true
} else if (argv[i] === '--require' || argv[i] === '-r') { } else if (arg === '--require' || arg === '-r') {
option.modules.push(argv[++i]) nextArgIsRequire = true
continue continue
} else if (argv[i] === '--abi' || argv[i] === '-a') { } else if (arg === '--abi' || arg === '-a') {
option.abi = true option.abi = true
continue continue
} else if (argv[i][0] === '-') { } else if (arg === '--no-help') {
option.noHelp = true
continue
} else if (arg[0] === '-') {
continue continue
} else { } else {
option.file = argv[i] option.file = arg
break break
} }
} }
if (nextArgIsRequire) {
console.error('Invalid Usage: --require [file]\n\n"file" is required')
process.exit(1)
}
// Quit when all windows are closed and no other one is listening to this. // Quit when all windows are closed and no other one is listening to this.
app.on('window-all-closed', () => { app.on('window-all-closed', () => {
if (app.listeners('window-all-closed').length === 1 && !option.interactive) { if (app.listeners('window-all-closed').length === 1 && !option.interactive) {
@ -54,201 +66,21 @@ app.on('window-all-closed', () => {
// Create default menu. // Create default menu.
app.once('ready', () => { app.once('ready', () => {
if (Menu.getApplicationMenu()) return setDefaultApplicationMenu()
const template = [
{
label: 'Edit',
submenu: [
{
role: 'undo'
},
{
role: 'redo'
},
{
type: 'separator'
},
{
role: 'cut'
},
{
role: 'copy'
},
{
role: 'paste'
},
{
role: 'pasteandmatchstyle'
},
{
role: 'delete'
},
{
role: 'selectall'
}
]
},
{
label: 'View',
submenu: [
{
role: 'reload'
},
{
role: 'forcereload'
},
{
role: 'toggledevtools'
},
{
type: 'separator'
},
{
role: 'resetzoom'
},
{
role: 'zoomin'
},
{
role: 'zoomout'
},
{
type: 'separator'
},
{
role: 'togglefullscreen'
}
]
},
{
role: 'window',
submenu: [
{
role: 'minimize'
},
{
role: 'close'
}
]
},
{
role: 'help',
submenu: [
{
label: 'Learn More',
click () {
shell.openExternal('https://electronjs.org')
}
},
{
label: 'Documentation',
click () {
shell.openExternal(
`https://github.com/electron/electron/tree/v${process.versions.electron}/docs#readme`
)
}
},
{
label: 'Community Discussions',
click () {
shell.openExternal('https://discuss.atom.io/c/electron')
}
},
{
label: 'Search Issues',
click () {
shell.openExternal('https://github.com/electron/electron/issues')
}
}
]
}
]
if (process.platform === 'darwin') {
template.unshift({
label: 'Electron',
submenu: [
{
role: 'about'
},
{
type: 'separator'
},
{
role: 'services',
submenu: []
},
{
type: 'separator'
},
{
role: 'hide'
},
{
role: 'hideothers'
},
{
role: 'unhide'
},
{
type: 'separator'
},
{
role: 'quit'
}
]
})
template[1].submenu.push({
type: 'separator'
}, {
label: 'Speech',
submenu: [
{
role: 'startspeaking'
},
{
role: 'stopspeaking'
}
]
})
template[3].submenu = [
{
role: 'close'
},
{
role: 'minimize'
},
{
role: 'zoom'
},
{
type: 'separator'
},
{
role: 'front'
}
]
} else {
template.unshift({
label: 'File',
submenu: [{
role: 'quit'
}]
})
}
const menu = Menu.buildFromTemplate(template)
Menu.setApplicationMenu(menu)
}) })
// Set up preload modules
if (option.modules.length > 0) { if (option.modules.length > 0) {
Module._preloadModules(option.modules) Module._preloadModules(option.modules)
} }
function loadApplicationPackage (packagePath) { function loadApplicationPackage (packagePath) {
// Add a flag indicating app is started from default app. // Add a flag indicating app is started from default app.
process.defaultApp = true Object.defineProperty(process, 'defaultApp', {
configurable: false,
enumerable: true,
value: true
})
try { try {
// Override app name and version. // Override app name and version.
@ -333,12 +165,10 @@ if (option.file && !option.webdriver) {
} else if (option.abi) { } else if (option.abi) {
console.log(process.versions.modules) console.log(process.versions.modules)
process.exit(0) process.exit(0)
} else if (option.default) {
const indexPath = path.join(__dirname, '/index.html')
loadApplicationByUrl(`file://${indexPath}`)
} else if (option.interactive) { } else if (option.interactive) {
startRepl() startRepl()
} else { } else {
if (!option.noHelp) {
const welcomeMessage = ` const welcomeMessage = `
Electron ${process.versions.electron} - Build cross platform desktop apps with JavaScript, HTML, and CSS Electron ${process.versions.electron} - Build cross platform desktop apps with JavaScript, HTML, and CSS
Usage: electron [options] [path] Usage: electron [options] [path]
@ -351,13 +181,18 @@ if (option.file && !option.webdriver) {
- http://, https://, or file:// URL. - http://, https://, or file:// URL.
Options: Options:
-d, --default Run the default bundled Electron app.
-i, --interactive Open a REPL to the main process. -i, --interactive Open a REPL to the main process.
-r, --require Module to preload (option can be repeated). -r, --require Module to preload (option can be repeated).
-v, --version Print the version. -v, --version Print the version.
-a, --abi Print the Node ABI version.` -a, --abi Print the Node ABI version.`
console.log(welcomeMessage) console.log(welcomeMessage)
const indexPath = path.join(__dirname, '/index.html') }
loadApplicationByUrl(`file://${indexPath}`)
const indexPath = path.join(__dirname, '/index.html')
loadApplicationByUrl(url.format({
protocol: 'file:',
slashes: true,
pathname: indexPath
}))
} }

194
default_app/menu.js Normal file
View file

@ -0,0 +1,194 @@
const { shell, Menu } = require('electron')
const setDefaultApplicationMenu = () => {
if (Menu.getApplicationMenu()) return
const template = [
{
label: 'Edit',
submenu: [
{
role: 'undo'
},
{
role: 'redo'
},
{
type: 'separator'
},
{
role: 'cut'
},
{
role: 'copy'
},
{
role: 'paste'
},
{
role: 'pasteandmatchstyle'
},
{
role: 'delete'
},
{
role: 'selectall'
}
]
},
{
label: 'View',
submenu: [
{
role: 'reload'
},
{
role: 'forcereload'
},
{
role: 'toggledevtools'
},
{
type: 'separator'
},
{
role: 'resetzoom'
},
{
role: 'zoomin'
},
{
role: 'zoomout'
},
{
type: 'separator'
},
{
role: 'togglefullscreen'
}
]
},
{
role: 'window',
submenu: [
{
role: 'minimize'
},
{
role: 'close'
}
]
},
{
role: 'help',
submenu: [
{
label: 'Learn More',
click () {
shell.openExternal('https://electronjs.org')
}
},
{
label: 'Documentation',
click () {
shell.openExternal(
`https://github.com/electron/electron/tree/v${process.versions.electron}/docs#readme`
)
}
},
{
label: 'Community Discussions',
click () {
shell.openExternal('https://discuss.atom.io/c/electron')
}
},
{
label: 'Search Issues',
click () {
shell.openExternal('https://github.com/electron/electron/issues')
}
}
]
}
]
if (process.platform === 'darwin') {
template.unshift({
label: 'Electron',
submenu: [
{
role: 'about'
},
{
type: 'separator'
},
{
role: 'services',
submenu: []
},
{
type: 'separator'
},
{
role: 'hide'
},
{
role: 'hideothers'
},
{
role: 'unhide'
},
{
type: 'separator'
},
{
role: 'quit'
}
]
})
template[1].submenu.push({
type: 'separator'
}, {
label: 'Speech',
submenu: [
{
role: 'startspeaking'
},
{
role: 'stopspeaking'
}
]
})
template[3].submenu = [
{
role: 'close'
},
{
role: 'minimize'
},
{
role: 'zoom'
},
{
type: 'separator'
},
{
role: 'front'
}
]
} else {
template.unshift({
label: 'File',
submenu: [{
role: 'quit'
}]
})
}
const menu = Menu.buildFromTemplate(template)
Menu.setApplicationMenu(menu)
}
module.exports = {
setDefaultApplicationMenu
}

29
default_app/renderer.js
View file

@ -2,19 +2,29 @@ const { remote, shell } = require('electron')
const fs = require('fs') const fs = require('fs')
const path = require('path') const path = require('path')
const URL = require('url') const URL = require('url')
const electronPath = path.relative(process.cwd(), remote.process.execPath)
Array.from(document.querySelectorAll('a[href]')).forEach(link => { function initialize () {
// Find the shortest path to the electron binary
const absoluteElectronPath = remote.process.execPath
const relativeElectronPath = path.relative(process.cwd(), absoluteElectronPath)
const electronPath = absoluteElectronPath.length < relativeElectronPath.length
? absoluteElectronPath
: relativeElectronPath
for (const link of document.querySelectorAll('a[href]')) {
// safely add `?utm_source=default_app // safely add `?utm_source=default_app
let url = URL.parse(link.getAttribute('href'), true) const parsedUrl = URL.parse(link.getAttribute('href'), true)
url.query = Object.assign(url.query, { utm_source: 'default_app' }) parsedUrl.query = { ...parsedUrl.query, utm_source: 'default_app' }
url = URL.format(url) const url = URL.format(parsedUrl)
link.addEventListener('click', (e) => { const openLinkExternally = (e) => {
e.preventDefault() e.preventDefault()
shell.openExternal(url) shell.openExternal(url)
}) }
})
link.addEventListener('click', openLinkExternally)
link.addEventListener('auxclick', openLinkExternally)
}
document.querySelector('.electron-version').innerText = `Electron v${process.versions.electron}` document.querySelector('.electron-version').innerText = `Electron v${process.versions.electron}`
document.querySelector('.chrome-version').innerText = `Chromium v${process.versions.chrome}` document.querySelector('.chrome-version').innerText = `Chromium v${process.versions.chrome}`
@ -50,3 +60,6 @@ function loadSVG (element) {
for (const element of document.querySelectorAll('.octicon')) { for (const element of document.querySelectorAll('.octicon')) {
loadSVG(element) loadSVG(element)
} }
}
window.addEventListener('load', initialize)

1
filenames.gni
View file

@ -91,6 +91,7 @@ filenames = {
"default_app/icon.png", "default_app/icon.png",
"default_app/index.html", "default_app/index.html",
"default_app/main.js", "default_app/main.js",
"default_app/menu.js",
"default_app/package.json", "default_app/package.json",
"default_app/renderer.js", "default_app/renderer.js",
"default_app/styles.css", "default_app/styles.css",

19
lib/renderer/security-warnings.js
View file

@ -61,13 +61,18 @@ const getIsRemoteProtocol = function () {
* @returns {boolean} Is a CSP with `unsafe-eval` set? * @returns {boolean} Is a CSP with `unsafe-eval` set?
*/ */
const isUnsafeEvalEnabled = function () { const isUnsafeEvalEnabled = function () {
const { webFrame } = require('electron')
return new Promise((resolve) => {
webFrame.executeJavaScript(`(${(() => {
try { try {
// eslint-disable-next-line new Function('') // eslint-disable-line no-new,no-new-func
new Function(''); } catch (err) {
return true
} catch (error) {
return false return false
} }
return true
}).toString()})()`, resolve)
})
} }
/** /**
@ -176,14 +181,16 @@ module.exports = {
* Logs a warning message about unset or insecure CSP * Logs a warning message about unset or insecure CSP
*/ */
warnAboutInsecureCSP: () => { warnAboutInsecureCSP: () => {
if (isUnsafeEvalEnabled()) { isUnsafeEvalEnabled().then((enabled) => {
if (!enabled) return
const warning = `This renderer process has either no Content Security const warning = `This renderer process has either no Content Security
Policy set or a policy with "unsafe-eval" enabled. This exposes users of Policy set or a policy with "unsafe-eval" enabled. This exposes users of
this app to unnecessary security risks.\n ${moreInformation}` this app to unnecessary security risks.\n ${moreInformation}`
console.warn('%cElectron Security Warning (Insecure Content-Security-Policy)', console.warn('%cElectron Security Warning (Insecure Content-Security-Policy)',
'font-weight: bold;', warning) 'font-weight: bold;', warning)
} })
}, },
/** /**