1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
|
// Copyright 2020 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_PERMISSIONS_PERMISSION_REVOCATION_REQUEST_H_
#define CHROME_BROWSER_PERMISSIONS_PERMISSION_REVOCATION_REQUEST_H_
#include <optional>
#include "base/functional/callback.h"
#include "base/memory/raw_ptr.h"
#include "base/memory/weak_ptr.h"
#include "base/time/time.h"
#include "chrome/browser/permissions/crowd_deny_preload_data.h"
#include "chrome/browser/permissions/crowd_deny_safe_browsing_request.h"
#include "components/content_settings/core/common/content_settings_types.h"
#include "components/safe_browsing/buildflags.h"
#include "url/gurl.h"
class Profile;
// Revokes the notifications permission if an origin marked as abusive or
// disruptive. This is the case when:
// 1) The notifications permission revocation experiment is enabled.
// 2) The origin exists on ABUSIVE_PROMPTS, ABUSIVE_CONTENT or
// DISRUPTIVE_BEHAVIOR blocking lists.
// 3) The origin exists on SafeBrowsing.
// 4) If a user granted notification permission via quiet permission prompt UI,
// revocation will not applied.
class PermissionRevocationRequest {
public:
// The permission revocation verdict for a given origin.
enum class Outcome {
PERMISSION_NOT_REVOKED,
PERMISSION_REVOKED_DUE_TO_ABUSE,
PERMISSION_REVOKED_DUE_TO_DISRUPTIVE_BEHAVIOR,
};
using OutcomeCallback = base::OnceCallback<void(Outcome)>;
// Asynchronously starts origin verification and revokes notifications
// permission.
PermissionRevocationRequest(Profile* profile,
const GURL& origin,
OutcomeCallback callback);
~PermissionRevocationRequest();
PermissionRevocationRequest(const PermissionRevocationRequest&) = delete;
PermissionRevocationRequest& operator=(const PermissionRevocationRequest&) =
delete;
static void ExemptOriginFromFutureRevocations(Profile* profile,
const GURL& origin);
static bool IsOriginExemptedFromFutureRevocations(Profile* profile,
const GURL& origin);
static bool HasPreviouslyRevokedPermission(Profile* profile,
const GURL& origin);
private:
// Verifies if |origin_| is on ABUSIVE_PROMPTS, ABUSIVE_CONTENT or
// DISRUPTIVE_BEHAVIOR lists. If yes, the notifications permission will be
// revoked. |callback_| will be synchronously called with the result.
void CheckAndRevokeIfBlocklisted();
#if BUILDFLAG(SAFE_BROWSING_AVAILABLE)
void OnSiteReputationReady(
const CrowdDenyPreloadData::SiteReputation* reputation);
void OnSafeBrowsingVerdictReceived(
const CrowdDenyPreloadData::SiteReputation* reputation,
CrowdDenySafeBrowsingRequest::Verdict verdict);
#endif
void NotifyCallback(Outcome outcome);
std::optional<CrowdDenySafeBrowsingRequest> safe_browsing_request_;
raw_ptr<Profile> profile_;
const GURL origin_;
OutcomeCallback callback_;
// The time when the Crowd Deny request starts.
std::optional<base::TimeTicks> crowd_deny_request_start_time_;
// The Crowd Deny component load duration.
std::optional<base::TimeDelta> crowd_deny_request_duration_;
base::WeakPtrFactory<PermissionRevocationRequest> weak_factory_{this};
};
#endif // CHROME_BROWSER_PERMISSIONS_PERMISSION_REVOCATION_REQUEST_H_
|
