// Copyright (c) 2016 GitHub, Inc. // Use of this source code is governed by the MIT license that can be // found in the LICENSE file. #include "shell/browser/web_contents_permission_helper.h" #include #include #include "components/content_settings/core/common/content_settings.h" #include "components/webrtc/media_stream_devices_controller.h" #include "content/public/browser/browser_context.h" #include "content/public/browser/render_process_host.h" #include "content/public/browser/web_contents_user_data.h" #include "shell/browser/electron_browser_context.h" #include "shell/browser/electron_permission_manager.h" #include "shell/browser/media/media_capture_devices_dispatcher.h" #include "third_party/blink/public/common/mediastream/media_stream_request.h" #include "third_party/blink/public/mojom/mediastream/media_stream.mojom.h" #if BUILDFLAG(IS_MAC) #include "chrome/browser/media/webrtc/system_media_capture_permissions_mac.h" #endif using blink::mojom::MediaStreamRequestResult; using blink::mojom::MediaStreamType; namespace { constexpr std::string_view MediaStreamTypeToString( blink::mojom::MediaStreamType type) { switch (type) { case MediaStreamType::DEVICE_AUDIO_CAPTURE: return "audio"; case MediaStreamType::DEVICE_VIDEO_CAPTURE: return "video"; default: return "unknown"; } } } // namespace namespace electron { namespace { [[nodiscard]] content::DesktopMediaID GetScreenId( const std::vector& requested_video_device_ids) { if (!requested_video_device_ids.empty() && !requested_video_device_ids.front().empty()) return content::DesktopMediaID::Parse(requested_video_device_ids.front()); // If the device id wasn't specified then this is a screen capture request // (i.e. chooseDesktopMedia() API wasn't used to generate device id). return {content::DesktopMediaID::TYPE_SCREEN, -1 /* kFullDesktopScreenId */}; } #if BUILDFLAG(IS_MAC) bool SystemMediaPermissionDenied(const content::MediaStreamRequest& request) { if (request.audio_type == MediaStreamType::DEVICE_AUDIO_CAPTURE) { const auto system_audio_permission = system_permission_settings::CheckSystemAudioCapturePermission(); return system_audio_permission == system_permission_settings::SystemPermission::kRestricted || system_audio_permission == system_permission_settings::SystemPermission::kDenied; } if (request.video_type == MediaStreamType::DEVICE_VIDEO_CAPTURE) { const auto system_video_permission = system_permission_settings::CheckSystemVideoCapturePermission(); return system_video_permission == system_permission_settings::SystemPermission::kRestricted || system_video_permission == system_permission_settings::SystemPermission::kDenied; } return false; } #endif // Handles requests for legacy-style `navigator.getUserMedia(...)` calls. // This includes desktop capture through the chromeMediaSource / // chromeMediaSourceId constraints. void HandleUserMediaRequest(const content::MediaStreamRequest& request, content::MediaResponseCallback callback) { auto stream_devices_set = blink::mojom::StreamDevicesSet::New(); auto devices = blink::mojom::StreamDevices::New(); stream_devices_set->stream_devices.emplace_back(std::move(devices)); auto& devices_ref = *stream_devices_set->stream_devices[0]; if (request.audio_type == MediaStreamType::GUM_TAB_AUDIO_CAPTURE || request.audio_type == MediaStreamType::GUM_DESKTOP_AUDIO_CAPTURE) { devices_ref.audio_device = blink::MediaStreamDevice( request.audio_type, request.audio_type == MediaStreamType::GUM_DESKTOP_AUDIO_CAPTURE ? "loopback" : "", request.audio_type == MediaStreamType::GUM_DESKTOP_AUDIO_CAPTURE ? "System Audio" : ""); } if (request.video_type == MediaStreamType::GUM_TAB_VIDEO_CAPTURE || request.video_type == MediaStreamType::GUM_DESKTOP_VIDEO_CAPTURE) { devices_ref.video_device = blink::MediaStreamDevice( request.video_type, request.video_type == MediaStreamType::GUM_DESKTOP_VIDEO_CAPTURE ? GetScreenId(request.requested_video_device_ids).ToString() : "", request.video_type == MediaStreamType::GUM_DESKTOP_VIDEO_CAPTURE ? "Screen" : ""); } bool empty = !devices_ref.audio_device.has_value() && !devices_ref.video_device.has_value(); std::move(callback).Run(*stream_devices_set, empty ? MediaStreamRequestResult::NO_HARDWARE : MediaStreamRequestResult::OK, nullptr); } void OnMediaStreamRequestResponse( content::MediaResponseCallback callback, const blink::mojom::StreamDevicesSet& stream_devices_set, MediaStreamRequestResult result, bool blocked_by_permissions_policy, ContentSetting audio_setting, ContentSetting video_setting) { std::move(callback).Run(stream_devices_set, result, nullptr); } void MediaAccessAllowed(const content::MediaStreamRequest& request, content::MediaResponseCallback callback, bool allowed) { if (allowed) { #if BUILDFLAG(IS_MAC) // If the request was approved, ask for system permissions if needed. // See // chrome/browser/media/webrtc/permission_bubble_media_access_handler.cc. if (SystemMediaPermissionDenied(request)) { std::move(callback).Run(blink::mojom::StreamDevicesSet(), MediaStreamRequestResult::PERMISSION_DENIED, nullptr); return; } #endif if (request.video_type == MediaStreamType::GUM_DESKTOP_VIDEO_CAPTURE || request.audio_type == MediaStreamType::GUM_DESKTOP_AUDIO_CAPTURE || request.video_type == MediaStreamType::GUM_TAB_VIDEO_CAPTURE || request.audio_type == MediaStreamType::GUM_TAB_AUDIO_CAPTURE) { HandleUserMediaRequest(request, std::move(callback)); } else if (request.video_type == MediaStreamType::DEVICE_VIDEO_CAPTURE || request.audio_type == MediaStreamType::DEVICE_AUDIO_CAPTURE) { webrtc::MediaStreamDevicesController::RequestPermissions( request, MediaCaptureDevicesDispatcher::GetInstance(), base::BindOnce(&OnMediaStreamRequestResponse, std::move(callback)), allowed); } else if (request.video_type == MediaStreamType::DISPLAY_VIDEO_CAPTURE || request.video_type == MediaStreamType::DISPLAY_VIDEO_CAPTURE_THIS_TAB || request.video_type == MediaStreamType::DISPLAY_VIDEO_CAPTURE_SET || request.audio_type == MediaStreamType::DISPLAY_AUDIO_CAPTURE) { content::RenderFrameHost* rfh = content::RenderFrameHost::FromID( request.render_process_id, request.render_frame_id); if (!rfh) return; content::BrowserContext* browser_context = rfh->GetBrowserContext(); ElectronBrowserContext* electron_browser_context = static_cast(browser_context); auto split_callback = base::SplitOnceCallback(std::move(callback)); if (electron_browser_context->ChooseDisplayMediaDevice( request, std::move(split_callback.second))) return; std::move(split_callback.first) .Run(blink::mojom::StreamDevicesSet(), MediaStreamRequestResult::NOT_SUPPORTED, nullptr); } else { std::move(callback).Run(blink::mojom::StreamDevicesSet(), MediaStreamRequestResult::NOT_SUPPORTED, nullptr); } } else { std::move(callback).Run(blink::mojom::StreamDevicesSet(), MediaStreamRequestResult::PERMISSION_DENIED, nullptr); } } void OnPermissionResponse(base::OnceCallback callback, blink::mojom::PermissionStatus status) { if (status == blink::mojom::PermissionStatus::GRANTED) std::move(callback).Run(true); else std::move(callback).Run(false); } } // namespace WebContentsPermissionHelper::WebContentsPermissionHelper( content::WebContents* web_contents) : content::WebContentsUserData(*web_contents), web_contents_(web_contents) {} WebContentsPermissionHelper::~WebContentsPermissionHelper() = default; void WebContentsPermissionHelper::RequestPermission( content::RenderFrameHost* requesting_frame, blink::PermissionType permission, base::OnceCallback callback, bool user_gesture, base::Value::Dict details) { auto* permission_manager = static_cast( web_contents_->GetBrowserContext()->GetPermissionControllerDelegate()); auto origin = web_contents_->GetLastCommittedURL(); permission_manager->RequestPermissionWithDetails( permission, requesting_frame, origin, false, std::move(details), base::BindOnce(&OnPermissionResponse, std::move(callback))); } bool WebContentsPermissionHelper::CheckPermission( blink::PermissionType permission, base::Value::Dict details) const { auto* rfh = web_contents_->GetPrimaryMainFrame(); auto* permission_manager = static_cast( web_contents_->GetBrowserContext()->GetPermissionControllerDelegate()); auto origin = web_contents_->GetLastCommittedURL(); return permission_manager->CheckPermissionWithDetails(permission, rfh, origin, std::move(details)); } void WebContentsPermissionHelper::RequestFullscreenPermission( content::RenderFrameHost* requesting_frame, base::OnceCallback callback) { RequestPermission( requesting_frame, static_cast(PermissionType::FULLSCREEN), std::move(callback)); } void WebContentsPermissionHelper::RequestMediaAccessPermission( const content::MediaStreamRequest& request, content::MediaResponseCallback response_callback) { auto callback = base::BindOnce(&MediaAccessAllowed, request, std::move(response_callback)); base::Value::Dict details; base::Value::List media_types; if (request.audio_type == blink::mojom::MediaStreamType::DEVICE_AUDIO_CAPTURE) { media_types.Append("audio"); } if (request.video_type == blink::mojom::MediaStreamType::DEVICE_VIDEO_CAPTURE) { media_types.Append("video"); } details.Set("mediaTypes", std::move(media_types)); details.Set("securityOrigin", request.security_origin.spec()); // The permission type doesn't matter here, AUDIO_CAPTURE/VIDEO_CAPTURE // are presented as same type in content_converter.h. RequestPermission(content::RenderFrameHost::FromID(request.render_process_id, request.render_frame_id), blink::PermissionType::AUDIO_CAPTURE, std::move(callback), false, std::move(details)); } void WebContentsPermissionHelper::RequestWebNotificationPermission( content::RenderFrameHost* requesting_frame, base::OnceCallback callback) { RequestPermission(requesting_frame, blink::PermissionType::NOTIFICATIONS, std::move(callback)); } void WebContentsPermissionHelper::RequestPointerLockPermission( bool user_gesture, bool last_unlocked_by_target, base::OnceCallback callback) { RequestPermission(web_contents_->GetPrimaryMainFrame(), blink::PermissionType::POINTER_LOCK, base::BindOnce(std::move(callback), web_contents_, user_gesture, last_unlocked_by_target), user_gesture); } void WebContentsPermissionHelper::RequestKeyboardLockPermission( bool esc_key_locked, base::OnceCallback callback) { RequestPermission( web_contents_->GetPrimaryMainFrame(), blink::PermissionType::KEYBOARD_LOCK, base::BindOnce(std::move(callback), web_contents_, esc_key_locked)); } void WebContentsPermissionHelper::RequestOpenExternalPermission( content::RenderFrameHost* requesting_frame, base::OnceCallback callback, bool user_gesture, const GURL& url) { base::Value::Dict details; details.Set("externalURL", url.spec()); RequestPermission( requesting_frame, static_cast(PermissionType::OPEN_EXTERNAL), std::move(callback), user_gesture, std::move(details)); } bool WebContentsPermissionHelper::CheckMediaAccessPermission( const url::Origin& security_origin, blink::mojom::MediaStreamType type) const { base::Value::Dict details; details.Set("securityOrigin", security_origin.GetURL().spec()); details.Set("mediaType", MediaStreamTypeToString(type)); auto blink_type = type == blink::mojom::MediaStreamType::DEVICE_AUDIO_CAPTURE ? blink::PermissionType::AUDIO_CAPTURE : blink::PermissionType::VIDEO_CAPTURE; return CheckPermission(blink_type, std::move(details)); } bool WebContentsPermissionHelper::CheckSerialAccessPermission( const url::Origin& embedding_origin) const { base::Value::Dict details; details.Set("securityOrigin", embedding_origin.GetURL().spec()); return CheckPermission( static_cast(PermissionType::SERIAL), std::move(details)); } WEB_CONTENTS_USER_DATA_KEY_IMPL(WebContentsPermissionHelper); } // namespace electron