2007-03-22 10:30:00 -07:00
|
|
|
/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
2012-05-21 04:12:37 -07:00
|
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
2007-03-22 10:30:00 -07:00
|
|
|
|
|
|
|
/**
|
|
|
|
* This file contains an interface to the Permission Manager,
|
|
|
|
* used to persistenly store permissions for different object types (cookies,
|
|
|
|
* images etc) on a site-by-site basis.
|
|
|
|
*
|
|
|
|
* This service broadcasts the following notification when the permission list
|
|
|
|
* is changed:
|
|
|
|
*
|
|
|
|
* topic : "perm-changed" (PERM_CHANGE_NOTIFICATION)
|
|
|
|
* broadcast whenever the permission list changes in some way. there
|
|
|
|
* are four possible data strings for this notification; one
|
|
|
|
* notification will be broadcast for each change, and will involve
|
|
|
|
* a single permission.
|
|
|
|
* subject: an nsIPermission interface pointer representing the permission object
|
|
|
|
* that changed.
|
|
|
|
* data : "deleted"
|
|
|
|
* a permission was deleted. the subject is the deleted permission.
|
|
|
|
* "added"
|
|
|
|
* a permission was added. the subject is the added permission.
|
|
|
|
* "changed"
|
|
|
|
* a permission was changed. the subject is the new permission.
|
|
|
|
* "cleared"
|
|
|
|
* the entire permission list was cleared. the subject is null.
|
|
|
|
*/
|
|
|
|
|
|
|
|
#include "nsISupports.idl"
|
|
|
|
#include "nsISimpleEnumerator.idl"
|
|
|
|
|
|
|
|
interface nsIURI;
|
|
|
|
interface nsIObserver;
|
2012-07-09 03:26:12 -07:00
|
|
|
interface nsIPrincipal;
|
2012-09-21 03:32:18 -07:00
|
|
|
interface nsIDOMWindow;
|
2013-06-06 12:59:31 -07:00
|
|
|
interface nsIPermission;
|
2007-03-22 10:30:00 -07:00
|
|
|
|
2013-06-24 05:51:07 -07:00
|
|
|
[scriptable, uuid(c9fec678-f194-43c9-96b0-7bd9dbdd6bb0)]
|
2007-03-22 10:30:00 -07:00
|
|
|
interface nsIPermissionManager : nsISupports
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* Predefined return values for the testPermission method and for
|
|
|
|
* the permission param of the add method
|
2007-12-04 22:37:36 -08:00
|
|
|
* NOTE: UNKNOWN_ACTION (0) is reserved to represent the
|
|
|
|
* default permission when no entry is found for a host, and
|
|
|
|
* should not be used by consumers to indicate otherwise.
|
2007-03-22 10:30:00 -07:00
|
|
|
*/
|
2012-08-22 08:56:38 -07:00
|
|
|
const uint32_t UNKNOWN_ACTION = 0;
|
|
|
|
const uint32_t ALLOW_ACTION = 1;
|
|
|
|
const uint32_t DENY_ACTION = 2;
|
2012-09-19 11:19:00 -07:00
|
|
|
const uint32_t PROMPT_ACTION = 3;
|
2007-03-22 10:30:00 -07:00
|
|
|
|
2009-10-16 14:01:04 -07:00
|
|
|
/**
|
|
|
|
* Predefined expiration types for permissions. Permissions can be permanent
|
|
|
|
* (never expire), expire at the end of the session, or expire at a specified
|
2013-06-06 12:59:32 -07:00
|
|
|
* time. Permissions that expire at the end of a session may also have a
|
|
|
|
* specified expiration time.
|
2009-10-16 14:01:04 -07:00
|
|
|
*/
|
2012-08-22 08:56:38 -07:00
|
|
|
const uint32_t EXPIRE_NEVER = 0;
|
|
|
|
const uint32_t EXPIRE_SESSION = 1;
|
|
|
|
const uint32_t EXPIRE_TIME = 2;
|
2009-10-16 14:01:04 -07:00
|
|
|
|
2007-03-22 10:30:00 -07:00
|
|
|
/**
|
|
|
|
* Add permission information for a given URI and permission type. This
|
|
|
|
* operation will cause the type string to be registered if it does not
|
2007-12-04 22:37:36 -08:00
|
|
|
* currently exist. If a permission already exists for a given type, it
|
|
|
|
* will be modified.
|
2007-03-22 10:30:00 -07:00
|
|
|
*
|
|
|
|
* @param uri the uri to add the permission for
|
|
|
|
* @param type a case-sensitive ASCII string, identifying the consumer.
|
|
|
|
* Consumers should choose this string to be unique, with
|
2007-12-04 22:37:36 -08:00
|
|
|
* respect to other consumers.
|
|
|
|
* @param permission an integer representing the desired action (e.g. allow
|
|
|
|
* or deny). The interpretation of this number is up to the
|
|
|
|
* consumer, and may represent different actions for different
|
|
|
|
* types. Consumers may use one of the enumerated permission
|
|
|
|
* actions defined above, for convenience.
|
|
|
|
* NOTE: UNKNOWN_ACTION (0) is reserved to represent the
|
|
|
|
* default permission when no entry is found for a host, and
|
|
|
|
* should not be used by consumers to indicate otherwise.
|
2009-10-16 14:01:04 -07:00
|
|
|
* @param expiretype a constant defining whether this permission should
|
|
|
|
* never expire (EXPIRE_NEVER), expire at the end of the
|
|
|
|
* session (EXPIRE_SESSION), or expire at a specified time
|
|
|
|
* (EXPIRE_TIME).
|
|
|
|
* @param expiretime an integer representation of when this permission
|
|
|
|
* should be forgotten (milliseconds since Jan 1 1970 0:00:00).
|
2007-03-22 10:30:00 -07:00
|
|
|
*/
|
|
|
|
void add(in nsIURI uri,
|
|
|
|
in string type,
|
2012-08-22 08:56:38 -07:00
|
|
|
in uint32_t permission,
|
|
|
|
[optional] in uint32_t expireType,
|
|
|
|
[optional] in int64_t expireTime);
|
2007-03-22 10:30:00 -07:00
|
|
|
|
2012-07-09 03:26:12 -07:00
|
|
|
/**
|
|
|
|
* Add permission information for a given principal.
|
|
|
|
* It is internally calling the other add() method using the nsIURI from the
|
|
|
|
* principal.
|
2012-07-18 08:24:01 -07:00
|
|
|
* Passing a system principal will be a no-op because they will always be
|
|
|
|
* granted permissions.
|
2012-07-09 03:26:12 -07:00
|
|
|
*/
|
|
|
|
void addFromPrincipal(in nsIPrincipal principal, in string typed,
|
2012-08-22 08:56:38 -07:00
|
|
|
in uint32_t permission,
|
|
|
|
[optional] in uint32_t expireType,
|
|
|
|
[optional] in int64_t expireTime);
|
2012-07-09 03:26:12 -07:00
|
|
|
|
2007-03-22 10:30:00 -07:00
|
|
|
/**
|
2007-12-04 22:37:36 -08:00
|
|
|
* Remove permission information for a given host string and permission type.
|
|
|
|
* The host string represents the exact entry in the permission list (such as
|
|
|
|
* obtained from the enumerator), not a URI which that permission might apply
|
|
|
|
* to.
|
2007-03-22 10:30:00 -07:00
|
|
|
*
|
|
|
|
* @param host the host to remove the permission for
|
|
|
|
* @param type a case-sensitive ASCII string, identifying the consumer.
|
|
|
|
* The type must have been previously registered using the
|
|
|
|
* add() method.
|
|
|
|
*/
|
|
|
|
void remove(in AUTF8String host,
|
|
|
|
in string type);
|
|
|
|
|
2012-07-09 03:26:12 -07:00
|
|
|
/**
|
|
|
|
* Remove permission information for a given principal.
|
|
|
|
* This is internally calling remove() with the host from the principal's URI.
|
2012-07-18 08:24:01 -07:00
|
|
|
* Passing system principal will be a no-op because we never add them to the
|
|
|
|
* database.
|
2012-07-09 03:26:12 -07:00
|
|
|
*/
|
|
|
|
void removeFromPrincipal(in nsIPrincipal principal, in string type);
|
|
|
|
|
2007-03-22 10:30:00 -07:00
|
|
|
/**
|
|
|
|
* Clear permission information for all websites.
|
|
|
|
*/
|
|
|
|
void removeAll();
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Test whether a website has permission to perform the given action.
|
|
|
|
* @param uri the uri to be tested
|
|
|
|
* @param type a case-sensitive ASCII string, identifying the consumer
|
|
|
|
* @param return see add(), param permission. returns UNKNOWN_ACTION when
|
|
|
|
* there is no stored permission for this uri and / or type.
|
|
|
|
*/
|
2012-08-22 08:56:38 -07:00
|
|
|
uint32_t testPermission(in nsIURI uri,
|
2007-03-22 10:30:00 -07:00
|
|
|
in string type);
|
|
|
|
|
2012-07-09 03:26:12 -07:00
|
|
|
/**
|
|
|
|
* Test whether the principal has the permission to perform a given action.
|
2012-07-18 08:24:01 -07:00
|
|
|
* System principals will always have permissions granted.
|
2012-07-09 03:26:12 -07:00
|
|
|
*/
|
2012-08-22 08:56:38 -07:00
|
|
|
uint32_t testPermissionFromPrincipal(in nsIPrincipal principal,
|
2012-07-09 03:26:12 -07:00
|
|
|
in string type);
|
|
|
|
|
2012-09-21 03:32:18 -07:00
|
|
|
/**
|
|
|
|
* Test whether the principal associated with the window's document has the
|
|
|
|
* permission to perform a given action. System principals will always
|
|
|
|
* have permissions granted.
|
|
|
|
*/
|
|
|
|
uint32_t testPermissionFromWindow(in nsIDOMWindow window,
|
|
|
|
in string type);
|
|
|
|
|
2007-03-22 10:30:00 -07:00
|
|
|
/**
|
|
|
|
* Test whether a website has permission to perform the given action.
|
|
|
|
* This requires an exact hostname match, subdomains are not a match.
|
|
|
|
* @param uri the uri to be tested
|
|
|
|
* @param type a case-sensitive ASCII string, identifying the consumer
|
|
|
|
* @param return see add(), param permission. returns UNKNOWN_ACTION when
|
|
|
|
* there is no stored permission for this uri and / or type.
|
|
|
|
*/
|
2012-08-22 08:56:38 -07:00
|
|
|
uint32_t testExactPermission(in nsIURI uri,
|
2007-03-22 10:30:00 -07:00
|
|
|
in string type);
|
|
|
|
|
2012-07-09 03:26:12 -07:00
|
|
|
/**
|
|
|
|
* See testExactPermission() above.
|
2012-07-18 08:24:01 -07:00
|
|
|
* System principals will always have permissions granted.
|
2012-07-09 03:26:12 -07:00
|
|
|
*/
|
2012-08-22 08:56:38 -07:00
|
|
|
uint32_t testExactPermissionFromPrincipal(in nsIPrincipal principal,
|
2012-07-09 03:26:12 -07:00
|
|
|
in string type);
|
|
|
|
|
2013-01-10 12:23:39 -08:00
|
|
|
/**
|
|
|
|
* Test whether a website has permission to perform the given action
|
|
|
|
* ignoring active sessions.
|
|
|
|
* System principals will always have permissions granted.
|
|
|
|
*
|
|
|
|
* @param principal the principal
|
|
|
|
* @param type a case-sensitive ASCII string, identifying the consumer
|
|
|
|
* @param return see add(), param permission. returns UNKNOWN_ACTION when
|
|
|
|
* there is no stored permission for this uri and / or type.
|
|
|
|
*/
|
|
|
|
uint32_t testExactPermanentPermission(in nsIPrincipal principal,
|
|
|
|
in string type);
|
|
|
|
|
2013-06-06 12:59:31 -07:00
|
|
|
/**
|
|
|
|
* Get the permission object associated with the given principal and action.
|
|
|
|
* @param principal The principal
|
|
|
|
* @param type A case-sensitive ASCII string identifying the consumer
|
|
|
|
* @param exactHost If true, only the specific host will be matched,
|
|
|
|
* @see testExactPermission. If false, subdomains will
|
|
|
|
* also be searched, @see testPermission.
|
|
|
|
* @returns The matching permission object, or null if no matching object
|
|
|
|
* was found. No matching object is equivalent to UNKNOWN_ACTION.
|
|
|
|
* @note Clients in general should prefer the test* methods unless they
|
|
|
|
* need to know the specific stored details.
|
|
|
|
* @note This method will always return null for the system principal.
|
|
|
|
*/
|
|
|
|
nsIPermission getPermissionObject(in nsIPrincipal principal,
|
|
|
|
in string type,
|
|
|
|
in boolean exactHost);
|
|
|
|
|
2013-01-05 14:02:29 -08:00
|
|
|
/**
|
|
|
|
* Increment or decrement our "refcount" of an app id.
|
|
|
|
*
|
|
|
|
* We use this refcount to determine an app's lifetime. When an app's
|
|
|
|
* refcount goes to 0, we clear the permissions given to the app which are
|
|
|
|
* set to expire at the end of its session.
|
|
|
|
*/
|
|
|
|
void addrefAppId(in unsigned long appId);
|
|
|
|
void releaseAppId(in unsigned long appId);
|
|
|
|
|
2007-03-22 10:30:00 -07:00
|
|
|
/**
|
|
|
|
* Allows enumeration of all stored permissions
|
|
|
|
* @return an nsISimpleEnumerator interface that allows access to
|
|
|
|
* nsIPermission objects
|
|
|
|
*/
|
|
|
|
readonly attribute nsISimpleEnumerator enumerator;
|
2012-08-31 07:34:28 -07:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Remove all permissions associated with a given app id.
|
2013-01-07 09:37:01 -08:00
|
|
|
* @param aAppId The appId of the app
|
|
|
|
* @param aBrowserOnly Whether we should remove permissions associated with
|
|
|
|
* a browser element (true) or all permissions (false).
|
2012-08-31 07:34:28 -07:00
|
|
|
*/
|
2013-01-07 09:37:01 -08:00
|
|
|
void removePermissionsForApp(in unsigned long appId,
|
|
|
|
in boolean browserOnly);
|
2013-06-24 05:51:07 -07:00
|
|
|
|
|
|
|
/**
|
|
|
|
* If the current permission is set to expire, reset the expiration time. If
|
|
|
|
* there is no permission or the current permission does not expire, this
|
|
|
|
* method will silently return.
|
|
|
|
*
|
|
|
|
* @param sessionExpiretime an integer representation of when this permission
|
|
|
|
* should be forgotten (milliseconds since
|
|
|
|
* Jan 1 1970 0:00:00), if it is currently
|
|
|
|
* EXPIRE_SESSION.
|
|
|
|
* @param sessionExpiretime an integer representation of when this permission
|
|
|
|
* should be forgotten (milliseconds since
|
|
|
|
* Jan 1 1970 0:00:00), if it is currently
|
|
|
|
* EXPIRE_TIME.
|
|
|
|
*/
|
|
|
|
void updateExpireTime(in nsIPrincipal principal,
|
|
|
|
in string type,
|
|
|
|
in boolean exactHost,
|
|
|
|
in uint64_t sessionExpireTime,
|
|
|
|
in uint64_t persistentExpireTime);
|
2007-03-22 10:30:00 -07:00
|
|
|
};
|
|
|
|
|
|
|
|
%{ C++
|
|
|
|
#define NS_PERMISSIONMANAGER_CONTRACTID "@mozilla.org/permissionmanager;1"
|
|
|
|
|
|
|
|
#define PERM_CHANGE_NOTIFICATION "perm-changed"
|
|
|
|
%}
|