File: federated_identity_account_keyed_permission_context.h

package info (click to toggle)
chromium 139.0.7258.127-1
  • links: PTS, VCS
  • area: main
  • in suites:
  • size: 6,122,068 kB
  • sloc: cpp: 35,100,771; ansic: 7,163,530; javascript: 4,103,002; python: 1,436,920; asm: 946,517; xml: 746,709; pascal: 187,653; perl: 88,691; sh: 88,436; objc: 79,953; sql: 51,488; cs: 44,583; fortran: 24,137; makefile: 22,147; tcl: 15,277; php: 13,980; yacc: 8,984; ruby: 7,485; awk: 3,720; lisp: 3,096; lex: 1,327; ada: 727; jsp: 228; sed: 36
file content (154 lines) | stat: -rw-r--r-- 7,029 bytes parent folder | download | duplicates (3) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
 
// Copyright 2022 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.

#ifndef CHROME_BROWSER_WEBID_FEDERATED_IDENTITY_ACCOUNT_KEYED_PERMISSION_CONTEXT_H_
#define CHROME_BROWSER_WEBID_FEDERATED_IDENTITY_ACCOUNT_KEYED_PERMISSION_CONTEXT_H_

#include <string>

#include "base/memory/raw_ptr.h"
#include "components/content_settings/core/common/content_settings_types.h"
#include "components/permissions/object_permission_context_base.h"
#include "components/webid/federated_identity_data_model.h"

namespace content {
class BrowserContext;
class ContentSettingsForOneType;
}

namespace net {
class SchemefulSite;
}

namespace url {
class Origin;
}

class HostContentSettingsMap;

// Context for storing permission grants that are associated with a
// (relying party, identity-provider, identity-provider account) tuple.
class FederatedIdentityAccountKeyedPermissionContext
    : public permissions::ObjectPermissionContextBase {
 public:
  explicit FederatedIdentityAccountKeyedPermissionContext(
      content::BrowserContext* browser_context);
  FederatedIdentityAccountKeyedPermissionContext(
      content::BrowserContext* browser_context,
      HostContentSettingsMap* host_content_settings_map);

  FederatedIdentityAccountKeyedPermissionContext(
      const FederatedIdentityAccountKeyedPermissionContext&) = delete;
  FederatedIdentityAccountKeyedPermissionContext& operator=(
      const FederatedIdentityAccountKeyedPermissionContext&) = delete;

  ~FederatedIdentityAccountKeyedPermissionContext() override;

  // Returns whether the given relying party has any FedCM permission.
  bool HasPermission(const url::Origin& relying_party_requester);

  // Returns whether there is an existing permission for the given (relying
  // party embedder site, identity provider site) tuple. This may be called on
  // any thread.
  //
  // Note that this query ignores the relying_party_requester portion of the
  // key. This means that if the sharing permission was granted to an embedded
  // relying party (a cross-origin iframe), `HasPermission(site, site)` may
  // return true even for non-cross-origin iframe cases.
  bool HasPermission(const net::SchemefulSite& relying_party_embedder,
                     const net::SchemefulSite& identity_provider);

  // Returns whether there is an existing permission for the
  // (relying_party_requester, relying_party_embedder, identity_provider) tuple.
  bool HasPermission(const url::Origin& relying_party_requester,
                     const url::Origin& relying_party_embedder,
                     const url::Origin& identity_provider);

  // Returns the last time when `account_id` was used via FedCM on the
  // (relying_party_requester, relying_party_embedder, identity_provider). If
  // there is no known last time, returns nullopt. If the `account_id` was known
  // to be used but a timestamp is not known, returns 0.
  std::optional<base::Time> GetLastUsedTimestamp(
      const url::Origin& relying_party_requester,
      const url::Origin& relying_party_embedder,
      const url::Origin& identity_provider,
      const std::string& account_id);

  // Grants permission for the (relying_party_requester, relying_party_embedder,
  // identity_provider, account_id) tuple.
  void GrantPermission(const url::Origin& relying_party_requester,
                       const url::Origin& relying_party_embedder,
                       const url::Origin& identity_provider,
                       const std::string& account_id);

  // Updates the timestamp of an existing permission, or does nothing if no
  // permission matching the key is found. Returns true if a permission is
  // found, false otherwise.
  bool RefreshExistingPermission(const url::Origin& relying_party_requester,
                                 const url::Origin& relying_party_embedder,
                                 const url::Origin& identity_provider,
                                 const std::string& account_id);

  // Revokes previously-granted permission for the (`relying_party_requester`,
  // `relying_party_embedder`, `identity_provider`, `account_id`) tuple. If the
  // `account_id` is not found, we revoke all accounts associated with the
  // triple (`relying_party_requester`, `relying_party_embedder`,
  // `identity_provider`).
  void RevokePermission(const url::Origin& relying_party_requester,
                        const url::Origin& relying_party_embedder,
                        const url::Origin& identity_provider,
                        const std::string& account_id,
                        base::OnceClosure callback);

  // Marks the given (site, site) pair as eligible to use FedCM sharing
  // permission as a signal for the Storage Access API. This is only valid to
  // call for pairs that already have sharing permission.
  void MarkStorageAccessEligible(
      const net::SchemefulSite& relying_party_embedder,
      const net::SchemefulSite& identity_provider,
      base::OnceClosure callback);

  // Handles updates when an origin's "requires user mediation" status changes.
  void OnSetRequiresUserMediation(const url::Origin& relying_party,
                                  base::OnceClosure callback);

  // permissions::ObjectPermissionContextBase:
  std::string GetKeyForObject(const base::Value::Dict& object) override;

  void GetAllDataKeys(
      base::OnceCallback<void(
          std::vector<webid::FederatedIdentityDataModel::DataKey>)> callback);
  void RemoveFederatedIdentityDataByDataKey(
      const webid::FederatedIdentityDataModel::DataKey& data_key,
      base::OnceClosure callback);

  // Converts existing sharing permission grants into (site, site)-keyed content
  // settings. The returned value only includes permissions for (site, site)
  // pairs that were marked "eligible" via `MarkStorageAccessEligible`.
  ContentSettingsForOneType GetSharingPermissionGrantsAsContentSettings();

 private:
  // permissions::ObjectPermissionContextBase:
  bool IsValidObject(const base::Value::Dict& object) override;
  std::u16string GetObjectDisplayName(const base::Value::Dict& object) override;

  // Sends the current FEDERATED_IDENTITY_SHARING permissions to the network
  // service, for use when choosing which cookies to include or exclude for a
  // given network request or `document.cookie` evaluation.
  void SyncSharingPermissionGrantsToNetworkService(base::OnceClosure callback);

  void AddToAccountList(base::Value::Dict& dict, const std::string& account_id);

  // The BrowserContext associated with this permission context.
  base::raw_ref<content::BrowserContext> browser_context_;

  raw_ptr<base::Clock> clock_;

  // The set of pairs that are eligible for Storage-Access autogrants.
  // Keyed by (embedder, identity-provider) pairs.
  base::flat_set<std::pair<net::SchemefulSite, net::SchemefulSite>>
      storage_access_eligible_connections_;
};

#endif  // CHROME_BROWSER_WEBID_FEDERATED_IDENTITY_ACCOUNT_KEYED_PERMISSION_CONTEXT_H_