mirror of
https://gitlab.winehq.org/wine/wine-gecko.git
synced 2024-09-13 09:24:08 -07:00
189 lines
5.8 KiB
C++
189 lines
5.8 KiB
C++
/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
|
/* vim: set ts=2 et sw=2 tw=80: */
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
#include "CheckPermissionsHelper.h"
|
|
|
|
#include "nsIDOMWindow.h"
|
|
#include "nsILoadContext.h"
|
|
#include "nsIWebNavigation.h"
|
|
#include "nsIObserverService.h"
|
|
#include "nsIPermissionManager.h"
|
|
#include "nsIPrincipal.h"
|
|
#include "nsIScriptObjectPrincipal.h"
|
|
#include "nsIURI.h"
|
|
|
|
#include "nsContentUtils.h"
|
|
#include "nsDOMStorage.h"
|
|
#include "nsNetUtil.h"
|
|
#include "nsThreadUtils.h"
|
|
#include "mozilla/Services.h"
|
|
#include "mozilla/Preferences.h"
|
|
|
|
#include "IndexedDatabaseManager.h"
|
|
|
|
#define PERMISSION_INDEXEDDB "indexedDB"
|
|
#define PREF_INDEXEDDB_ENABLED "dom.indexedDB.enabled"
|
|
#define TOPIC_PERMISSIONS_PROMPT "indexedDB-permissions-prompt"
|
|
#define TOPIC_PERMISSIONS_RESPONSE "indexedDB-permissions-response"
|
|
|
|
using namespace mozilla;
|
|
USING_INDEXEDDB_NAMESPACE
|
|
using namespace mozilla::services;
|
|
|
|
namespace {
|
|
|
|
inline
|
|
PRUint32
|
|
GetIndexedDBPermissions(const nsACString& aASCIIOrigin,
|
|
nsIDOMWindow* aWindow)
|
|
{
|
|
NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");
|
|
|
|
if (!Preferences::GetBool(PREF_INDEXEDDB_ENABLED)) {
|
|
return nsIPermissionManager::DENY_ACTION;
|
|
}
|
|
|
|
// No window here means chrome access
|
|
if (!aWindow) {
|
|
return nsIPermissionManager::ALLOW_ACTION;
|
|
}
|
|
|
|
nsCOMPtr<nsIScriptObjectPrincipal> sop(do_QueryInterface(aWindow));
|
|
NS_ENSURE_TRUE(sop, nsIPermissionManager::DENY_ACTION);
|
|
|
|
if (nsContentUtils::IsSystemPrincipal(sop->GetPrincipal())) {
|
|
return nsIPermissionManager::ALLOW_ACTION;
|
|
}
|
|
|
|
nsCOMPtr<nsIWebNavigation> webNav = do_GetInterface(aWindow);
|
|
nsCOMPtr<nsILoadContext> loadContext = do_QueryInterface(webNav);
|
|
if (loadContext && loadContext->UsePrivateBrowsing()) {
|
|
// TODO Support private browsing indexedDB?
|
|
return nsIPermissionManager::DENY_ACTION;
|
|
}
|
|
|
|
nsCOMPtr<nsIURI> uri;
|
|
nsresult rv = NS_NewURI(getter_AddRefs(uri), aASCIIOrigin);
|
|
NS_ENSURE_SUCCESS(rv, nsIPermissionManager::DENY_ACTION);
|
|
|
|
nsCOMPtr<nsIPermissionManager> permissionManager =
|
|
do_GetService(NS_PERMISSIONMANAGER_CONTRACTID);
|
|
NS_ENSURE_TRUE(permissionManager, nsIPermissionManager::DENY_ACTION);
|
|
|
|
PRUint32 permission;
|
|
rv = permissionManager->TestPermission(uri, PERMISSION_INDEXEDDB,
|
|
&permission);
|
|
NS_ENSURE_SUCCESS(rv, nsIPermissionManager::DENY_ACTION);
|
|
|
|
return permission;
|
|
}
|
|
|
|
} // anonymous namespace
|
|
|
|
NS_IMPL_THREADSAFE_ISUPPORTS3(CheckPermissionsHelper, nsIRunnable,
|
|
nsIInterfaceRequestor,
|
|
nsIObserver)
|
|
|
|
NS_IMETHODIMP
|
|
CheckPermissionsHelper::Run()
|
|
{
|
|
NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");
|
|
|
|
PRUint32 permission = mHasPrompted ?
|
|
mPromptResult :
|
|
GetIndexedDBPermissions(mASCIIOrigin, mWindow);
|
|
|
|
nsresult rv;
|
|
if (mHasPrompted) {
|
|
// Add permissions to the database, but only if we are in the parent
|
|
// process (if we are in the child process, we have already
|
|
// set the permission when the prompt was shown in the parent, as
|
|
// we cannot set the permission from the child).
|
|
if (permission != nsIPermissionManager::UNKNOWN_ACTION &&
|
|
XRE_GetProcessType() == GeckoProcessType_Default) {
|
|
nsCOMPtr<nsIURI> uri;
|
|
rv = NS_NewURI(getter_AddRefs(uri), mASCIIOrigin);
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
nsCOMPtr<nsIPermissionManager> permissionManager =
|
|
do_GetService(NS_PERMISSIONMANAGER_CONTRACTID);
|
|
NS_ENSURE_STATE(permissionManager);
|
|
|
|
rv = permissionManager->Add(uri, PERMISSION_INDEXEDDB, permission,
|
|
nsIPermissionManager::EXPIRE_NEVER, 0);
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
}
|
|
}
|
|
else if (permission == nsIPermissionManager::UNKNOWN_ACTION &&
|
|
mPromptAllowed) {
|
|
nsCOMPtr<nsIObserverService> obs = GetObserverService();
|
|
rv = obs->NotifyObservers(static_cast<nsIRunnable*>(this),
|
|
TOPIC_PERMISSIONS_PROMPT, nsnull);
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
return NS_OK;
|
|
}
|
|
|
|
nsRefPtr<OpenDatabaseHelper> helper;
|
|
helper.swap(mHelper);
|
|
|
|
nsCOMPtr<nsIDOMWindow> window;
|
|
window.swap(mWindow);
|
|
|
|
if (permission == nsIPermissionManager::ALLOW_ACTION) {
|
|
IndexedDatabaseManager* mgr = IndexedDatabaseManager::Get();
|
|
NS_ASSERTION(mgr, "This should never be null!");
|
|
|
|
return helper->Dispatch(mgr->IOThread());
|
|
}
|
|
|
|
NS_ASSERTION(permission == nsIPermissionManager::UNKNOWN_ACTION ||
|
|
permission == nsIPermissionManager::DENY_ACTION,
|
|
"Unknown permission!");
|
|
|
|
helper->SetError(NS_ERROR_DOM_INDEXEDDB_NOT_ALLOWED_ERR);
|
|
|
|
return helper->RunImmediately();
|
|
}
|
|
|
|
NS_IMETHODIMP
|
|
CheckPermissionsHelper::GetInterface(const nsIID& aIID,
|
|
void** aResult)
|
|
{
|
|
NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");
|
|
if (aIID.Equals(NS_GET_IID(nsIObserver))) {
|
|
return QueryInterface(aIID, aResult);
|
|
}
|
|
|
|
if (aIID.Equals(NS_GET_IID(nsIDOMWindow))) {
|
|
return mWindow->QueryInterface(aIID, aResult);
|
|
}
|
|
|
|
*aResult = nsnull;
|
|
return NS_ERROR_NOT_AVAILABLE;
|
|
}
|
|
|
|
NS_IMETHODIMP
|
|
CheckPermissionsHelper::Observe(nsISupports* aSubject,
|
|
const char* aTopic,
|
|
const PRUnichar* aData)
|
|
{
|
|
NS_ASSERTION(NS_IsMainThread(), "Wrong thread!");
|
|
NS_ASSERTION(!strcmp(aTopic, TOPIC_PERMISSIONS_RESPONSE), "Bad topic!");
|
|
NS_ASSERTION(mPromptAllowed, "How did we get here?");
|
|
|
|
mHasPrompted = true;
|
|
|
|
nsresult rv;
|
|
mPromptResult = nsDependentString(aData).ToInteger(&rv);
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
rv = NS_DispatchToCurrentThread(this);
|
|
NS_ENSURE_SUCCESS(rv, rv);
|
|
|
|
return NS_OK;
|
|
}
|