// Copyright (c) 2016 GitHub, Inc. // Use of this source code is governed by the MIT license that can be // found in the LICENSE file. #ifndef ELECTRON_SHELL_BROWSER_ELECTRON_PERMISSION_MANAGER_H_ #define ELECTRON_SHELL_BROWSER_ELECTRON_PERMISSION_MANAGER_H_ #include #include #include "base/containers/id_map.h" #include "base/functional/callback.h" #include "content/public/browser/permission_controller_delegate.h" #include "gin/dictionary.h" #include "shell/browser/electron_browser_context.h" #include "shell/common/gin_helper/dictionary.h" namespace base { class Value; } // namespace base namespace content { class WebContents; } namespace electron { class ElectronPermissionManager : public content::PermissionControllerDelegate { public: ElectronPermissionManager(); ~ElectronPermissionManager() override; // disable copy ElectronPermissionManager(const ElectronPermissionManager&) = delete; ElectronPermissionManager& operator=(const ElectronPermissionManager&) = delete; using USBProtectedClasses = std::vector; using StatusCallback = base::OnceCallback; using StatusesCallback = base::OnceCallback&)>; using PairCallback = base::OnceCallback; using RequestHandler = base::RepeatingCallback; using CheckHandler = base::RepeatingCallback; using DeviceCheckHandler = base::RepeatingCallback&)>; using ProtectedUSBHandler = base::RepeatingCallback&)>; using BluetoothPairingHandler = base::RepeatingCallback; void RequestPermissionWithDetails(blink::PermissionType permission, content::RenderFrameHost* render_frame_host, const GURL& requesting_origin, bool user_gesture, base::Value::Dict details, StatusCallback response_callback); // Handler to dispatch permission requests in JS. void SetPermissionRequestHandler(const RequestHandler& handler); void SetPermissionCheckHandler(const CheckHandler& handler); void SetDevicePermissionHandler(const DeviceCheckHandler& handler); void SetProtectedUSBHandler(const ProtectedUSBHandler& handler); void SetBluetoothPairingHandler(const BluetoothPairingHandler& handler); void CheckBluetoothDevicePair(gin_helper::Dictionary details, PairCallback pair_callback) const; bool CheckPermissionWithDetails(blink::PermissionType permission, content::RenderFrameHost* render_frame_host, const GURL& requesting_origin, base::Value::Dict details) const; bool CheckDevicePermission(blink::PermissionType permission, const url::Origin& origin, const base::Value& object, ElectronBrowserContext* browser_context) const; void GrantDevicePermission(blink::PermissionType permission, const url::Origin& origin, const base::Value& object, ElectronBrowserContext* browser_context) const; void RevokeDevicePermission(blink::PermissionType permission, const url::Origin& origin, const base::Value& object, ElectronBrowserContext* browser_context) const; USBProtectedClasses CheckProtectedUSBClasses( const USBProtectedClasses& classes) const; protected: void OnPermissionResponse(int request_id, int permission_id, blink::mojom::PermissionStatus status); // content::PermissionControllerDelegate: void RequestPermissions( content::RenderFrameHost* render_frame_host, const content::PermissionRequestDescription& request_description, StatusesCallback callback) override; void ResetPermission(blink::PermissionType permission, const GURL& requesting_origin, const GURL& embedding_origin) override; blink::mojom::PermissionStatus GetPermissionStatus( blink::PermissionType permission, const GURL& requesting_origin, const GURL& embedding_origin) override; void RequestPermissionsFromCurrentDocument( content::RenderFrameHost* render_frame_host, const content::PermissionRequestDescription& request_description, base::OnceCallback< void(const std::vector&)> callback) override; content::PermissionResult GetPermissionResultForOriginWithoutContext( blink::PermissionType permission, const url::Origin& requesting_origin, const url::Origin& embedding_origin) override; blink::mojom::PermissionStatus GetPermissionStatusForCurrentDocument( blink::PermissionType permission, content::RenderFrameHost* render_frame_host) override; blink::mojom::PermissionStatus GetPermissionStatusForWorker( blink::PermissionType permission, content::RenderProcessHost* render_process_host, const GURL& worker_origin) override; blink::mojom::PermissionStatus GetPermissionStatusForEmbeddedRequester( blink::PermissionType permission, content::RenderFrameHost* render_frame_host, const url::Origin& requesting_origin) override; SubscriptionId SubscribePermissionStatusChange( blink::PermissionType permission, content::RenderProcessHost* render_process_host, content::RenderFrameHost* render_frame_host, const GURL& requesting_origin, base::RepeatingCallback callback) override; void UnsubscribePermissionStatusChange(SubscriptionId id) override; private: class PendingRequest; using PendingRequestsMap = base::IDMap>; void RequestPermissionsWithDetails( content::RenderFrameHost* render_frame_host, const content::PermissionRequestDescription& request_description, base::Value::Dict details, StatusesCallback callback); RequestHandler request_handler_; CheckHandler check_handler_; DeviceCheckHandler device_permission_handler_; ProtectedUSBHandler protected_usb_handler_; BluetoothPairingHandler bluetooth_pairing_handler_; PendingRequestsMap pending_requests_; }; } // namespace electron #endif // ELECTRON_SHELL_BROWSER_ELECTRON_PERMISSION_MANAGER_H_