1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
|
// Copyright 2016 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_UI_WEBUI_SETTINGS_SITE_SETTINGS_HANDLER_H_
#define CHROME_BROWSER_UI_WEBUI_SETTINGS_SITE_SETTINGS_HANDLER_H_
#include <map>
#include <memory>
#include <optional>
#include <set>
#include <string>
#include <variant>
#include <vector>
#include "base/gtest_prod_util.h"
#include "base/memory/raw_ptr.h"
#include "base/memory/weak_ptr.h"
#include "base/scoped_multi_source_observation.h"
#include "base/values.h"
#include "chrome/browser/permissions/system/system_permission_settings.h"
#include "chrome/browser/profiles/profile.h"
#include "chrome/browser/profiles/profile_observer.h"
#include "chrome/browser/ui/webui/settings/settings_page_ui_handler.h"
#include "components/content_settings/core/browser/content_settings_observer.h"
#include "components/content_settings/core/browser/host_content_settings_map.h"
#include "components/permissions/object_permission_context_base.h"
#include "components/prefs/pref_store.h"
#include "content/public/browser/host_zoom_map.h"
#include "ppapi/buildflags/buildflags.h"
#include "url/origin.h"
class BrowsingDataModel;
class PrefChangeRegistrar;
namespace system_permission_settings {
class ScopedObservation;
}
namespace settings {
// Chrome "ContentSettings" settings page UI handler.
class SiteSettingsHandler
: public SettingsPageUIHandler,
public content_settings::Observer,
public ProfileObserver,
public permissions::ObjectPermissionContextBase::PermissionObserver {
public:
// The key used to group origins together in the UI. If two origins map to
// the same GroupingKey, they should be displayed in the same UI group. For
// normal web content, this will be equal to the eTLD+1.
class GroupingKey {
public:
static GroupingKey Create(const url::Origin& origin);
static GroupingKey CreateFromEtldPlus1(const std::string& etld_plus1);
static GroupingKey Deserialize(const std::string& serialized);
GroupingKey(const GroupingKey& other);
GroupingKey& operator=(const GroupingKey& other);
~GroupingKey();
std::string Serialize() const;
// Returns the eTLD+1 that this GroupingKey represents, or nullopt if it
// doesn't represent an eTLD+1.
std::optional<std::string> GetEtldPlusOne() const;
// Returns the origin that this GroupingKey represents, or nullopt if it
// doesn't represent an origin.
std::optional<url::Origin> GetOrigin() const;
bool operator<(const GroupingKey& other) const;
private:
explicit GroupingKey(const std::variant<std::string, url::Origin>& value);
url::Origin ToOrigin() const;
// eTLD+1 or Origin
std::variant<std::string, url::Origin> value_;
};
using AllSitesMap =
std::map<GroupingKey, std::set<std::pair<url::Origin, bool>>>;
explicit SiteSettingsHandler(Profile* profile);
SiteSettingsHandler(const SiteSettingsHandler&) = delete;
SiteSettingsHandler& operator=(const SiteSettingsHandler&) = delete;
~SiteSettingsHandler() override;
// SettingsPageUIHandler:
void RegisterMessages() override;
void OnJavascriptAllowed() override;
void OnJavascriptDisallowed() override;
// Usage info.
void OnGetUsageInfo();
void BrowsingDataModelCreated(std::unique_ptr<BrowsingDataModel> model);
// content_settings::Observer:
void OnContentSettingChanged(const ContentSettingsPattern& primary_pattern,
const ContentSettingsPattern& secondary_pattern,
ContentSettingsType content_type) override;
// ProfileObserver:
void OnOffTheRecordProfileCreated(Profile* off_the_record) override;
void OnProfileWillBeDestroyed(Profile* profile) override;
// ObjectPermissionContextBase::PermissionObserver implementation:
void OnObjectPermissionChanged(
std::optional<ContentSettingsType> guard_content_settings_type,
ContentSettingsType data_content_settings_type) override;
void OnZoomLevelChanged(const content::HostZoomMap::ZoomLevelChange& change);
// SystemPermissionSettingsObserver:
void OnSystemPermissionChanged(ContentSettingsType content_settings_type,
bool is_blocked);
void ServicePendingRequests();
// Asynchronously fetches the usage for a given origin. Replies back with
// OnGetUsageInfo above.
void HandleFetchUsageTotal(const base::Value::List& args);
// Asynchronously fetches the rws membership information label.
void HandleGetRwsMembershipLabel(const base::Value::List& args);
// Deletes the storage being used for a given host.
void HandleClearUnpartitionedUsage(const base::Value::List& args);
void HandleClearPartitionedUsage(const base::Value::List& args);
// Gets and sets the default value for a particular content settings type.
void HandleSetDefaultValueForContentType(const base::Value::List& args);
void HandleGetDefaultValueForContentType(const base::Value::List& args);
// Returns a list of sites with permissions settings, grouped by their
// eTLD+1. Recreates the model to fetch the cookie and usage data, which will
// send the list of sites with cookies or usage data to the front end when
// fetching finished.
void HandleGetAllSites(const base::Value::List& args);
// Returns a list containing the most recent permission changes for the
// content types that are visible in settings, grouped by origin/profile
// (incognito, regular) combinations, limited to N origin/profile pairings.
// This includes permission changes made by embargo, but does not include
// permissions enforced via policy.
void HandleGetRecentSitePermissions(const base::Value::List& args);
// Called when the list of origins using storage has been fetched, and sends
// this list back to the front end.
void OnStorageFetched();
// Converts a given number of bytes into a human-readable format, with data
// units.
void HandleGetFormattedBytes(const base::Value::List& args);
// Returns the list of site exceptions for a given content settings type.
void HandleGetExceptionList(const base::Value::List& args);
// Returns the list of storage access site exceptions for a given content
// setting (such as enabled or blocked).
void HandleGetStorageAccessExceptionList(const base::Value::List& args);
// Returns the list of chooser exceptions for a given chooser type.
void HandleGetChooserExceptionList(const base::Value::List& args);
// Returns the list of the allowed permission grants as defined by the
// File System Access API.
void HandleGetFileSystemGrants(const base::Value::List& args);
// Revokes the File System Access permission for a given origin
// and file path.
void HandleRevokeFileSystemGrant(const base::Value::List& args);
// Revokes all of the File System Access permissions for a given origin.
void HandleRevokeFileSystemGrants(const base::Value::List& args);
// Gets and sets a list of ContentSettingTypes for an origin.
// TODO(crbug.com/40528601): Investigate replacing the
// '*CategoryPermissionForPattern' equivalents below with these methods.
void HandleGetOriginPermissions(const base::Value::List& args);
void HandleSetOriginPermissions(const base::Value::List& args);
// Handles setting and resetting an origin permission.
void HandleResetCategoryPermissionForPattern(const base::Value::List& args);
void HandleSetCategoryPermissionForPattern(const base::Value::List& args);
// TODO(andypaicu, crbug.com/880684): Update to only expect a list of three
// arguments, replacing the current (requesting,embedding) arguments with
// simply (origin) and update all call sites.
// Handles resetting a chooser exception for the given site.
void HandleResetChooserExceptionForSite(const base::Value::List& args);
// Returns whether the pattern is valid given the type.
void HandleIsPatternValidForType(const base::Value::List& args);
// Looks up whether an incognito session is active.
void HandleUpdateIncognitoStatus(const base::Value::List& args);
// Handles the request for a list of all zoom levels.
void HandleFetchZoomLevels(const base::Value::List& args);
// Removes a particular zoom level for a given host.
void HandleRemoveZoomLevel(const base::Value::List& args);
// Handles the request to send block autoplay state.
void HandleFetchBlockAutoplayStatus(const base::Value::List& args);
// Updates the block autoplay enabled pref when the UI is toggled.
void HandleSetBlockAutoplayEnabled(const base::Value::List& args);
// Clear web storage data and cookies for a site group.
void HandleClearSiteGroupDataAndCookies(const base::Value::List& args);
// Gets the list of content types that are blocked at the OS level.
void HandleGetSystemDeniedPermissions(const base::Value::List& args);
// Attempts to open the the OS permission settings.
void HandleOpenSystemPermissionSettings(const base::Value::List& args);
void ClearAllSitesMapForTesting();
void SetModelForTesting(
std::unique_ptr<BrowsingDataModel> browsing_data_model);
BrowsingDataModel* GetBrowsingDataModelForTesting();
private:
friend class SiteSettingsHandlerBaseTest;
friend class SiteSettingsHandlerInfobarTest;
// TODO(crbug.com/40101962): Remove this friend class when the Persistent
// Permissions feature flag is removed.
friend class PersistentPermissionsSiteSettingsHandlerTest;
friend class SmartCardReaderPermissionsSiteSettingsHandlerTest;
// Rebuilds the BrowsingDataModel. Pending requests are serviced when the
// browsing data model is built.
void RebuildModel();
// Add or remove this class as an observer for content settings and chooser
// contexts corresponding to |profile|.
void ObserveSourcesForProfile(Profile* profile);
void StopObservingSourcesForProfile(Profile* profile);
// Calculates the data storage that has been used for each origin, and
// stores the information in the |all_sites_map| and |origin_size_map|.
void GetOriginStorage(AllSitesMap* all_sites_map,
std::map<url::Origin, int64_t>* origin_size_map);
// Calculates the number of cookies for each etld+1 and each host, and
// stores the information in the |all_sites_map| and |host_cookie_map|.
void GetHostCookies(
AllSitesMap* all_sites_map,
std::map<std::pair<std::string, std::optional<std::string>>, int>*
host_cookie_map);
// Returns a list of content settings types that are controlled via a standard
// permissions UI and should be made visible to the user. There is a single
// nullable string argument, which represents an associated origin. See
// `SiteSettingsPrefsBrowserProxy#getCategoryList`.
void HandleGetCategoryList(const base::Value::List& args);
// Returns a list of sites, grouped by their effective top level domain plus
// 1, with their cookies number and data usage information. This method will
// only be called after HandleGetAllSites is called.
base::Value::List PopulateCookiesAndUsageData(Profile* profile);
// Returns whether a given string is a valid origin.
void HandleIsOriginValid(const base::Value::List& args);
// Notifies the JS side about the state of the block autoplay toggle.
void SendBlockAutoplayStatus();
// Notifies the JS side whether incognito is enabled.
void SendIncognitoStatus(Profile* profile, bool was_destroyed);
// Sends the zoom level list down to the web ui.
void SendZoomLevels();
// Record metrics for actions on All Sites Page.
void HandleRecordAction(const base::Value::List& args);
// Gets a plural string for the given number of cookies.
void HandleGetNumCookiesString(const base::Value::List& args);
// Provides an opportunity for site data which is not integrated into a model
// to be removed when entries for |origins| are removed.
// TODO(crbug.com/40205603): This function is a temporary hack while the
// CookiesTreeModel is deprecated.
void RemoveNonModelData(const std::vector<url::Origin>& origins);
// Returns a dictionary containing the lists of the allowed permission
// grant objects granted via the File System Access API, per origin.
base::Value::List PopulateFileSystemGrantData();
// Sends the list of notification permissions to review to the WebUI.
void SendNotificationPermissionReviewList();
// Returns the list of permissions blocked at the system level.
base::Value GetSystemDeniedPermissions();
const raw_ptr<Profile, DanglingUntriaged> profile_;
base::ScopedMultiSourceObservation<Profile, ProfileObserver>
observed_profiles_{this};
// Keeps track of events related to zooming.
std::vector<base::CallbackListSubscription> host_zoom_map_subscriptions_;
// The origin for which to fetch usage.
std::string usage_origin_;
// Change observer for content settings.
base::ScopedMultiSourceObservation<HostContentSettingsMap,
content_settings::Observer>
observations_{this};
// Change observer for chooser permissions.
base::ScopedMultiSourceObservation<
permissions::ObjectPermissionContextBase,
permissions::ObjectPermissionContextBase::PermissionObserver>
chooser_observations_{this};
// Change observer for prefs.
std::unique_ptr<PrefChangeRegistrar> pref_change_registrar_;
// Data interface between storage backends and UI.
std::unique_ptr<BrowsingDataModel> browsing_data_model_;
// Whether the model was set for testing. Allows the handler to avoid
// resetting the model.
bool model_set_for_testing_ = false;
// Populated every time the user reloads the All Sites page.
// Maps GroupingKeys to sets of (origin, is_partitioned) pairs.
AllSitesMap all_sites_map_;
// Stores the origins that have permission settings.
std::set<url::Origin> origin_permission_set_;
// Whether to send all sites list on model update.
bool send_sites_list_ = false;
// Whether to send site detail data on model update.
bool update_site_details_ = false;
// Maintains observation of OS level permissions.
std::unique_ptr<system_permission_settings::ScopedObservation>
system_permission_settings_observation_;
// Used to listen to OS level changes to permissions
// std::unique_ptr<permissions::OSPermissionObserver> os_permission_observer_;
base::WeakPtrFactory<SiteSettingsHandler> weak_ptr_factory_{this};
};
} // namespace settings
#endif // CHROME_BROWSER_UI_WEBUI_SETTINGS_SITE_SETTINGS_HANDLER_H_
|
