gecko/dom/indexedDB/CheckPermissionsHelper.cpp

/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
/* vim: set ts=2 et sw=2 tw=80: */
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#include "CheckPermissionsHelper.h"

#include "nsIDOMWindow.h"
#include "nsILoadContext.h"
#include "nsIWebNavigation.h"
#include "nsIObserverService.h"
#include "nsIPermissionManager.h"
#include "nsIPrincipal.h"
#include "nsIScriptObjectPrincipal.h"
#include "nsIURI.h"

#include "nsContentUtils.h"
#include "nsDOMStorage.h"
#include "nsNetUtil.h"
#include "nsThreadUtils.h"
#include "mozilla/Services.h"
#include "mozilla/Preferences.h"

#include "IndexedDatabaseManager.h"

#define PERMISSION_INDEXEDDB "indexedDB"
#define PREF_INDEXEDDB_ENABLED "dom.indexedDB.enabled"
#define TOPIC_PERMISSIONS_PROMPT "indexedDB-permissions-prompt"
#define TOPIC_PERMISSIONS_RESPONSE "indexedDB-permissions-response"

using namespace mozilla;
USING_INDEXEDDB_NAMESPACE
using namespace mozilla::services;

namespace {

inline
PRUint32
GetIndexedDBPermissions(const nsACString& aASCIIOrigin,
                        nsIDOMWindow* aWindow)
{
  NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");

  if (!Preferences::GetBool(PREF_INDEXEDDB_ENABLED)) {
    return nsIPermissionManager::DENY_ACTION;
  }

  // No window here means chrome access
  if (!aWindow) {
    return nsIPermissionManager::ALLOW_ACTION;
  }

  nsCOMPtr<nsIScriptObjectPrincipal> sop(do_QueryInterface(aWindow));
  NS_ENSURE_TRUE(sop, nsIPermissionManager::DENY_ACTION);

  if (nsContentUtils::IsSystemPrincipal(sop->GetPrincipal())) {
    return nsIPermissionManager::ALLOW_ACTION;
  }

  nsCOMPtr<nsIWebNavigation> webNav = do_GetInterface(aWindow);
  nsCOMPtr<nsILoadContext> loadContext = do_QueryInterface(webNav);
  if (loadContext && loadContext->UsePrivateBrowsing()) {
    // TODO Support private browsing indexedDB?
    return nsIPermissionManager::DENY_ACTION;
  }

  nsCOMPtr<nsIURI> uri;
  nsresult rv = NS_NewURI(getter_AddRefs(uri), aASCIIOrigin);
  NS_ENSURE_SUCCESS(rv, nsIPermissionManager::DENY_ACTION);

  nsCOMPtr<nsIPermissionManager> permissionManager =
    do_GetService(NS_PERMISSIONMANAGER_CONTRACTID);
  NS_ENSURE_TRUE(permissionManager, nsIPermissionManager::DENY_ACTION);

  PRUint32 permission;
  rv = permissionManager->TestPermission(uri, PERMISSION_INDEXEDDB,
                                         &permission);
  NS_ENSURE_SUCCESS(rv, nsIPermissionManager::DENY_ACTION);

  return permission;
}

} // anonymous namespace

NS_IMPL_THREADSAFE_ISUPPORTS3(CheckPermissionsHelper, nsIRunnable,
                                                      nsIInterfaceRequestor,
                                                      nsIObserver)

NS_IMETHODIMP
CheckPermissionsHelper::Run()
{
  NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");

  PRUint32 permission = mHasPrompted ?
                        mPromptResult :
                        GetIndexedDBPermissions(mASCIIOrigin, mWindow);

  nsresult rv;
  if (mHasPrompted) {
    // Add permissions to the database, but only if we are in the parent
    // process (if we are in the child process, we have already
    // set the permission when the prompt was shown in the parent, as
    // we cannot set the permission from the child).
    if (permission != nsIPermissionManager::UNKNOWN_ACTION &&
        XRE_GetProcessType() == GeckoProcessType_Default) {
      nsCOMPtr<nsIURI> uri;
      rv = NS_NewURI(getter_AddRefs(uri), mASCIIOrigin);
      NS_ENSURE_SUCCESS(rv, rv);
  
      nsCOMPtr<nsIPermissionManager> permissionManager =
        do_GetService(NS_PERMISSIONMANAGER_CONTRACTID);
      NS_ENSURE_STATE(permissionManager);
  
      rv = permissionManager->Add(uri, PERMISSION_INDEXEDDB, permission,
                                  nsIPermissionManager::EXPIRE_NEVER, 0);
      NS_ENSURE_SUCCESS(rv, rv);
    }
  }
  else if (permission == nsIPermissionManager::UNKNOWN_ACTION &&
           mPromptAllowed) {
    nsCOMPtr<nsIObserverService> obs = GetObserverService();
    rv = obs->NotifyObservers(static_cast<nsIRunnable*>(this),
                              TOPIC_PERMISSIONS_PROMPT, nsnull);
    NS_ENSURE_SUCCESS(rv, rv);

    return NS_OK;
  }

  nsRefPtr<OpenDatabaseHelper> helper;
  helper.swap(mHelper);

  nsCOMPtr<nsIDOMWindow> window;
  window.swap(mWindow);

  if (permission == nsIPermissionManager::ALLOW_ACTION) {
    IndexedDatabaseManager* mgr = IndexedDatabaseManager::Get();
    NS_ASSERTION(mgr, "This should never be null!");

    return helper->Dispatch(mgr->IOThread());
  }

  NS_ASSERTION(permission == nsIPermissionManager::UNKNOWN_ACTION ||
               permission == nsIPermissionManager::DENY_ACTION,
               "Unknown permission!");

  helper->SetError(NS_ERROR_DOM_INDEXEDDB_NOT_ALLOWED_ERR);

  return helper->RunImmediately();
}

NS_IMETHODIMP
CheckPermissionsHelper::GetInterface(const nsIID& aIID,
                                     void** aResult)
{
  NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");
  if (aIID.Equals(NS_GET_IID(nsIObserver))) {
    return QueryInterface(aIID, aResult);
  }

  if (aIID.Equals(NS_GET_IID(nsIDOMWindow))) {
    return mWindow->QueryInterface(aIID, aResult);
  }

  *aResult = nsnull;
  return NS_ERROR_NOT_AVAILABLE;
}

NS_IMETHODIMP
CheckPermissionsHelper::Observe(nsISupports* aSubject,
                                const char* aTopic,
                                const PRUnichar* aData)
{
  NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");
  NS_ASSERTION(!strcmp(aTopic, TOPIC_PERMISSIONS_RESPONSE), "Bad topic!");
  NS_ASSERTION(mPromptAllowed, "How did we get here?");

  mHasPrompted = true;

  nsresult rv;
  mPromptResult = nsDependentString(aData).ToInteger(&rv);
  NS_ENSURE_SUCCESS(rv, rv);

  rv = NS_DispatchToCurrentThread(this);
  NS_ENSURE_SUCCESS(rv, rv);

  return NS_OK;
}
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`/* -- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -- */`
			`/* vim: set ts=2 et sw=2 tw=80: */`
Bug 716478 - update licence to MPL 2. 2012-05-21 04:12:37 -07:00			`/* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this`
			`* file, You can obtain one at http://mozilla.org/MPL/2.0/. */`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00
			`#include "CheckPermissionsHelper.h"`

			`#include "nsIDOMWindow.h"`
Bug 722857 - Determine private browsing status for DOMStorage from owning docshell if available, and receive updates if its privacy status changes. r=mayhemer 2012-05-26 01:37:58 -07:00			`#include "nsILoadContext.h"`
			`#include "nsIWebNavigation.h"`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`#include "nsIObserverService.h"`
			`#include "nsIPermissionManager.h"`
			`#include "nsIPrincipal.h"`
			`#include "nsIScriptObjectPrincipal.h"`
			`#include "nsIURI.h"`

			`#include "nsContentUtils.h"`
			`#include "nsDOMStorage.h"`
			`#include "nsNetUtil.h"`
			`#include "nsThreadUtils.h"`
			`#include "mozilla/Services.h"`
Bug 659533 Replace nsContentUtils::GetBoolPref() with Preferences::GetBool() r=roc 2011-05-24 23:31:59 -07:00			`#include "mozilla/Preferences.h"`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00
Bug 596776 - 'IndexedDB: Prevent quota prompt from hanging on shutdown'. r=sicking. 2010-10-19 10:58:39 -07:00			`#include "IndexedDatabaseManager.h"`

Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`#define PERMISSION_INDEXEDDB "indexedDB"`
			`#define PREF_INDEXEDDB_ENABLED "dom.indexedDB.enabled"`
			`#define TOPIC_PERMISSIONS_PROMPT "indexedDB-permissions-prompt"`
			`#define TOPIC_PERMISSIONS_RESPONSE "indexedDB-permissions-response"`

Bug 659533 Replace nsContentUtils::GetBoolPref() with Preferences::GetBool() r=roc 2011-05-24 23:31:59 -07:00			`using namespace mozilla;`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`USING_INDEXEDDB_NAMESPACE`
			`using namespace mozilla::services;`

			`namespace {`

			`inline`
			`PRUint32`
			`GetIndexedDBPermissions(const nsACString& aASCIIOrigin,`
			`nsIDOMWindow* aWindow)`
			`{`
			`NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");`

Bug 659533 Replace nsContentUtils::GetBoolPref() with Preferences::GetBool() r=roc 2011-05-24 23:31:59 -07:00			`if (!Preferences::GetBool(PREF_INDEXEDDB_ENABLED)) {`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`return nsIPermissionManager::DENY_ACTION;`
			`}`

Bug 587797 - IndexedDB: Make it possible to access IndexedDB APIs from chrome. r=khuey,bent 2012-01-03 07:27:39 -08:00			`// No window here means chrome access`
			`if (!aWindow) {`
			`return nsIPermissionManager::ALLOW_ACTION;`
			`}`

Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`nsCOMPtr<nsIScriptObjectPrincipal> sop(do_QueryInterface(aWindow));`
			`NS_ENSURE_TRUE(sop, nsIPermissionManager::DENY_ACTION);`

			`if (nsContentUtils::IsSystemPrincipal(sop->GetPrincipal())) {`
			`return nsIPermissionManager::ALLOW_ACTION;`
			`}`

Bug 722857 - Determine private browsing status for DOMStorage from owning docshell if available, and receive updates if its privacy status changes. r=mayhemer 2012-05-26 01:37:58 -07:00			`nsCOMPtr<nsIWebNavigation> webNav = do_GetInterface(aWindow);`
			`nsCOMPtr<nsILoadContext> loadContext = do_QueryInterface(webNav);`
			`if (loadContext && loadContext->UsePrivateBrowsing()) {`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`// TODO Support private browsing indexedDB?`
			`return nsIPermissionManager::DENY_ACTION;`
			`}`

			`nsCOMPtr<nsIURI> uri;`
			`nsresult rv = NS_NewURI(getter_AddRefs(uri), aASCIIOrigin);`
			`NS_ENSURE_SUCCESS(rv, nsIPermissionManager::DENY_ACTION);`

			`nsCOMPtr<nsIPermissionManager> permissionManager =`
			`do_GetService(NS_PERMISSIONMANAGER_CONTRACTID);`
			`NS_ENSURE_TRUE(permissionManager, nsIPermissionManager::DENY_ACTION);`

			`PRUint32 permission;`
			`rv = permissionManager->TestPermission(uri, PERMISSION_INDEXEDDB,`
			`&permission);`
			`NS_ENSURE_SUCCESS(rv, nsIPermissionManager::DENY_ACTION);`

			`return permission;`
			`}`

			`} // anonymous namespace`

			`NS_IMPL_THREADSAFE_ISUPPORTS3(CheckPermissionsHelper, nsIRunnable,`
			`nsIInterfaceRequestor,`
			`nsIObserver)`

			`NS_IMETHODIMP`
			`CheckPermissionsHelper::Run()`
			`{`
			`NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");`

			`PRUint32 permission = mHasPrompted ?`
			`mPromptResult :`
			`GetIndexedDBPermissions(mASCIIOrigin, mWindow);`

			`nsresult rv;`
			`if (mHasPrompted) {`
Bug 619494 - Make IndexedDB work in IPC Fennec. r=bent,mfinkle 2011-04-29 16:46:20 -07:00			`// Add permissions to the database, but only if we are in the parent`
			`// process (if we are in the child process, we have already`
			`// set the permission when the prompt was shown in the parent, as`
			`// we cannot set the permission from the child).`
			`if (permission != nsIPermissionManager::UNKNOWN_ACTION &&`
			`XRE_GetProcessType() == GeckoProcessType_Default) {`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`nsCOMPtr<nsIURI> uri;`
			`rv = NS_NewURI(getter_AddRefs(uri), mASCIIOrigin);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`nsCOMPtr<nsIPermissionManager> permissionManager =`
			`do_GetService(NS_PERMISSIONMANAGER_CONTRACTID);`
			`NS_ENSURE_STATE(permissionManager);`

			`rv = permissionManager->Add(uri, PERMISSION_INDEXEDDB, permission,`
			`nsIPermissionManager::EXPIRE_NEVER, 0);`
			`NS_ENSURE_SUCCESS(rv, rv);`
			`}`
			`}`
Bug 625071: Implement deleteDatabase. r=bent 2011-11-07 16:15:45 -08:00			`else if (permission == nsIPermissionManager::UNKNOWN_ACTION &&`
			`mPromptAllowed) {`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`nsCOMPtr<nsIObserverService> obs = GetObserverService();`
			`rv = obs->NotifyObservers(static_cast<nsIRunnable*>(this),`
			`TOPIC_PERMISSIONS_PROMPT, nsnull);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`return NS_OK;`
			`}`

Bug 687361: Implement the new IndexedDB setVersion API. r=bent --HG-- rename : dom/indexedDB/nsIIDBVersionChangeRequest.idl => dom/indexedDB/nsIIDBOpenDBRequest.idl 2011-10-20 09:10:56 -07:00			`nsRefPtr<OpenDatabaseHelper> helper;`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`helper.swap(mHelper);`

			`nsCOMPtr<nsIDOMWindow> window;`
			`window.swap(mWindow);`

			`if (permission == nsIPermissionManager::ALLOW_ACTION) {`
Bug 584319 - 'IndexedDB: Out of Memory error and crash when calling moz_indexedDB.open a lot'. r=sicking 2010-10-19 10:58:42 -07:00			`IndexedDatabaseManager* mgr = IndexedDatabaseManager::Get();`
			`NS_ASSERTION(mgr, "This should never be null!");`

			`return helper->Dispatch(mgr->IOThread());`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`}`

			`NS_ASSERTION(permission == nsIPermissionManager::UNKNOWN_ACTION \|\|`
			`permission == nsIPermissionManager::DENY_ACTION,`
			`"Unknown permission!");`

Bug 601774 - 'IndexedDB: Audit exceptions thrown from indexedDB methods'. r=sicking, a=blocking+ 2010-11-10 15:25:44 -08:00			`helper->SetError(NS_ERROR_DOM_INDEXEDDB_NOT_ALLOWED_ERR);`
Bug 687361: Implement the new IndexedDB setVersion API. r=bent --HG-- rename : dom/indexedDB/nsIIDBVersionChangeRequest.idl => dom/indexedDB/nsIIDBOpenDBRequest.idl 2011-10-20 09:10:56 -07:00
			`return helper->RunImmediately();`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`}`

			`NS_IMETHODIMP`
			`CheckPermissionsHelper::GetInterface(const nsIID& aIID,`
			`void** aResult)`
			`{`
			`NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");`
			`if (aIID.Equals(NS_GET_IID(nsIObserver))) {`
			`return QueryInterface(aIID, aResult);`
			`}`

			`if (aIID.Equals(NS_GET_IID(nsIDOMWindow))) {`
			`return mWindow->QueryInterface(aIID, aResult);`
			`}`

			`*aResult = nsnull;`
			`return NS_ERROR_NOT_AVAILABLE;`
			`}`

			`NS_IMETHODIMP`
			`CheckPermissionsHelper::Observe(nsISupports* aSubject,`
			`const char* aTopic,`
			`const PRUnichar* aData)`
			`{`
			`NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");`
			`NS_ASSERTION(!strcmp(aTopic, TOPIC_PERMISSIONS_RESPONSE), "Bad topic!");`
Bug 625071: Implement deleteDatabase. r=bent 2011-11-07 16:15:45 -08:00			`NS_ASSERTION(mPromptAllowed, "How did we get here?");`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00
Bug 690892 - Replace PR_TRUE/PR_FALSE with true/false on mozilla-central; rs=dbaron Landing on a CLOSED TREE 2011-10-17 07:59:28 -07:00			`mHasPrompted = true;`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00
			`nsresult rv;`
			`mPromptResult = nsDependentString(aData).ToInteger(&rv);`
			`NS_ENSURE_SUCCESS(rv, rv);`

Bug 697247: Part 2 - Rework IDB synchronization mechanisms. r=bent 2011-11-02 05:53:12 -07:00			`rv = NS_DispatchToCurrentThread(this);`
Bug 596776 - 'IndexedDB: Prevent quota prompt from hanging on shutdown'. r=sicking. 2010-10-19 10:58:39 -07:00			`NS_ENSURE_SUCCESS(rv, rv);`

			`return NS_OK;`
Bug 591516 - 'IndexedDB: Add some UI to prompt for IndexedDB permissions'. r=sicking+gavin. 2010-09-09 15:15:40 -07:00			`}`