chrome/browser/ui/website_settings/website_settings.h - chromium/src - Git at Google

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef CHROME_BROWSER_UI_WEBSITE_SETTINGS_WEBSITE_SETTINGS_H_
 #define CHROME_BROWSER_UI_WEBSITE_SETTINGS_WEBSITE_SETTINGS_H_

 #include "base/strings/string16.h"
 #include "chrome/browser/content_settings/tab_specific_content_settings.h"
 #include "components/content_settings/core/common/content_settings.h"
 #include "components/content_settings/core/common/content_settings_types.h"
 #include "content/public/common/signed_certificate_timestamp_id_and_status.h"
 #include "url/gurl.h"

 namespace content {
 class CertStore;
 struct SSLStatus;
 class WebContents;
 }

 class ChromeSSLHostStateDelegate;
 class HostContentSettingsMap;
 class Profile;
 class WebsiteSettingsUI;

 // The |WebsiteSettings| provides information about a website's permissions,
 // connection state and its identity. It owns a UI that displays the
 // information and allows users to change the permissions. |WebsiteSettings|
 // objects must be created on the heap. They destroy themselves after the UI is
 // closed.
 class WebsiteSettings : public TabSpecificContentSettings::SiteDataObserver {
  public:
   // TODO(palmer): Figure out if it is possible to unify SiteConnectionStatus
   // and SiteIdentityStatus.
   //
   // Status of a connection to a website.
   enum SiteConnectionStatus {
     SITE_CONNECTION_STATUS_UNKNOWN = 0,      // No status available.
     SITE_CONNECTION_STATUS_ENCRYPTED,        // Connection is encrypted.
     SITE_CONNECTION_STATUS_MIXED_CONTENT,    // Site has unencrypted content.
     SITE_CONNECTION_STATUS_UNENCRYPTED,      // Connection is not encrypted.
     SITE_CONNECTION_STATUS_ENCRYPTED_ERROR,  // Connection error occured.
     SITE_CONNECTION_STATUS_INTERNAL_PAGE,    // Internal site.
   };

   // Validation status of a website's identity.
   enum SiteIdentityStatus {
     // No status about the website's identity available.
     SITE_IDENTITY_STATUS_UNKNOWN = 0,
     // The website provided a valid certificate.
     SITE_IDENTITY_STATUS_CERT,
     // The website provided a valid EV certificate.
     SITE_IDENTITY_STATUS_EV_CERT,
     // The website provided a valid certificate but no revocation check could be
     // performed.
     SITE_IDENTITY_STATUS_CERT_REVOCATION_UNKNOWN,
     // Site identity could not be verified because the site did not provide a
     // certificate. This is the expected state for HTTP connections.
     SITE_IDENTITY_STATUS_NO_CERT,
     // An error occured while verifying the site identity.
     SITE_IDENTITY_STATUS_ERROR,
     // The site is a trusted internal chrome page.
     SITE_IDENTITY_STATUS_INTERNAL_PAGE,
     // The profile has accessed data using an administrator-provided
     // certificate, so the administrator might be able to intercept data.
     SITE_IDENTITY_STATUS_ADMIN_PROVIDED_CERT,
     // The website provided a valid certificate, but the certificate or chain
     // is using a deprecated signature algorithm.
     SITE_IDENTITY_STATUS_DEPRECATED_SIGNATURE_ALGORITHM,
   };

   // UMA statistics for WebsiteSettings. Do not reorder or remove existing
   // fields.
   enum WebsiteSettingsAction {
     WEBSITE_SETTINGS_OPENED = 0,
     WEBSITE_SETTINGS_PERMISSIONS_TAB_SELECTED = 1,
     WEBSITE_SETTINGS_CONNECTION_TAB_SELECTED = 2,
     WEBSITE_SETTINGS_CONNECTION_TAB_SHOWN_IMMEDIATELY = 3,
     WEBSITE_SETTINGS_COOKIES_DIALOG_OPENED = 4,
     WEBSITE_SETTINGS_CHANGED_PERMISSION = 5,
     WEBSITE_SETTINGS_CERTIFICATE_DIALOG_OPENED = 6,
     // No longer used; indicated a UI viewer for SCTs.
     // WEBSITE_SETTINGS_TRANSPARENCY_VIEWER_OPENED = 7,
     WEBSITE_SETTINGS_CONNECTION_HELP_OPENED = 8,
     WEBSITE_SETTINGS_SITE_SETTINGS_OPENED = 9,
     WEBSITE_SETTINGS_COUNT
   };

   // Creates a WebsiteSettings for the passed |url| using the given |ssl| status
   // object to determine the status of the site's connection. The
   // |WebsiteSettings| takes ownership of the |ui|.
   WebsiteSettings(WebsiteSettingsUI* ui,
                   Profile* profile,
                   TabSpecificContentSettings* tab_specific_content_settings,
                   content::WebContents* web_contents,
                   const GURL& url,
                   const content::SSLStatus& ssl,
                   content::CertStore* cert_store);
   ~WebsiteSettings() override;

   void RecordWebsiteSettingsAction(WebsiteSettingsAction action);

   // This method is called when ever a permission setting is changed.
   void OnSitePermissionChanged(ContentSettingsType type,
                                ContentSetting value);

   // This method is called by the UI when the UI is closing.
   void OnUIClosing();

   // This method is called when the revoke SSL error bypass button is pressed.
   void OnRevokeSSLErrorBypassButtonPressed();

   // Accessors.
   SiteConnectionStatus site_connection_status() const {
     return site_connection_status_;
   }

   const GURL& site_url() const { return site_url_; }

   SiteIdentityStatus site_identity_status() const {
     return site_identity_status_;
   }

   base::string16 site_connection_details() const {
     return site_connection_details_;
   }

   base::string16 site_identity_details() const {
     return site_identity_details_;
   }

   base::string16 organization_name() const {
     return organization_name_;
   }

   // SiteDataObserver implementation.
   void OnSiteDataAccessed() override;

  private:
   // Initializes the |WebsiteSettings|.
   void Init(Profile* profile,
             const GURL& url,
             const content::SSLStatus& ssl);

   // Sets (presents) the information about the site's permissions in the |ui_|.
   void PresentSitePermissions();

   // Sets (presents) the information about the site's data in the |ui_|.
   void PresentSiteData();

   // Sets (presents) the information about the site's identity and connection
   // in the |ui_|.
   void PresentSiteIdentity();

   // The website settings UI displays information and controls for site-
   // specific data (local stored objects like cookies), site-specific
   // permissions (location, pop-up, plugin, etc. permissions) and site-specific
   // information (identity, connection status, etc.).
   WebsiteSettingsUI* ui_;

   // The WebContents of the active tab.
   content::WebContents* web_contents_;

   // The flag that controls whether an infobar is displayed after the website
   // settings UI is closed or not.
   bool show_info_bar_;

   // The Omnibox URL of the website for which to display site permissions and
   // site information.
   GURL site_url_;

   // Status of the website's identity verification check.
   SiteIdentityStatus site_identity_status_;

   // For secure connection |cert_id_| is set to the ID of the server
   // certificate. For non secure connections |cert_id_| is 0.
   int cert_id_;
   // For secure connection, |signed_certificate_timestamp_ids_| is the list of
   // all Signed Certificate Timestamps and their validation status.
   // Empty if no SCTs accompanied the certificate
   content::SignedCertificateTimestampIDStatusList
       signed_certificate_timestamp_ids_;

   // Status of the connection to the website.
   SiteConnectionStatus site_connection_status_;

   // TODO(markusheintz): Move the creation of all the base::string16 typed UI
   // strings below to the corresponding UI code, in order to prevent
   // unnecessary UTF-8 string conversions.

   // Details about the website's identity. If the website's identity has been
   // verified then |site_identity_details_| contains who verified the identity.
   // This string will be displayed in the UI.
   base::string16 site_identity_details_;

   // Set when the user has explicitly bypassed an SSL error for this host or
   // explicitly denied it (the latter of which is not currently possible in the
   // Chrome UI). When |show_ssl_decision_revoke_button| is true, the connection
   // area of the page info will include an option for the user to revoke their
   // decision to bypass the SSL error for this host.
   bool show_ssl_decision_revoke_button_;

   // Details about the connection to the website. In case of an encrypted
   // connection |site_connection_details_| contains encryption details, like
   // encryption strength and ssl protocol version. This string will be
   // displayed in the UI.
   base::string16 site_connection_details_;

   // For websites that provided an EV certificate |orgainization_name_|
   // contains the organization name of the certificate. In all other cases
   // |organization_name| is an empty string. This string will be displayed in
   // the UI.
   base::string16 organization_name_;

   // The |CertStore| provides all X509Certificates.
   content::CertStore* cert_store_;

   // The |HostContentSettingsMap| is the service that provides and manages
   // content settings (aka. site permissions).
   HostContentSettingsMap* content_settings_;

   // Service for managing SSL error page bypasses. Used to revoke bypass
   // decisions by users.
   ChromeSSLHostStateDelegate* chrome_ssl_host_state_delegate_;

   bool did_revoke_user_ssl_decisions_;

   DISALLOW_COPY_AND_ASSIGN(WebsiteSettings);
 };

 #endif  // CHROME_BROWSER_UI_WEBSITE_SETTINGS_WEBSITE_SETTINGS_H_
	// Copyright (c) 2012 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef CHROME_BROWSER_UI_WEBSITE_SETTINGS_WEBSITE_SETTINGS_H_
	#define CHROME_BROWSER_UI_WEBSITE_SETTINGS_WEBSITE_SETTINGS_H_

	#include "base/strings/string16.h"
	#include "chrome/browser/content_settings/tab_specific_content_settings.h"
	#include "components/content_settings/core/common/content_settings.h"
	#include "components/content_settings/core/common/content_settings_types.h"
	#include "content/public/common/signed_certificate_timestamp_id_and_status.h"
	#include "url/gurl.h"

	namespace content {
	class CertStore;
	struct SSLStatus;
	class WebContents;
	}

	class ChromeSSLHostStateDelegate;
	class HostContentSettingsMap;
	class Profile;
	class WebsiteSettingsUI;

	// The \|WebsiteSettings\| provides information about a website's permissions,
	// connection state and its identity. It owns a UI that displays the
	// information and allows users to change the permissions. \|WebsiteSettings\|
	// objects must be created on the heap. They destroy themselves after the UI is
	// closed.
	class WebsiteSettings : public TabSpecificContentSettings::SiteDataObserver {
	public:
	// TODO(palmer): Figure out if it is possible to unify SiteConnectionStatus
	// and SiteIdentityStatus.
	//
	// Status of a connection to a website.
	enum SiteConnectionStatus {
	SITE_CONNECTION_STATUS_UNKNOWN = 0, // No status available.
	SITE_CONNECTION_STATUS_ENCRYPTED, // Connection is encrypted.
	SITE_CONNECTION_STATUS_MIXED_CONTENT, // Site has unencrypted content.
	SITE_CONNECTION_STATUS_UNENCRYPTED, // Connection is not encrypted.
	SITE_CONNECTION_STATUS_ENCRYPTED_ERROR, // Connection error occured.
	SITE_CONNECTION_STATUS_INTERNAL_PAGE, // Internal site.
	};

	// Validation status of a website's identity.
	enum SiteIdentityStatus {
	// No status about the website's identity available.
	SITE_IDENTITY_STATUS_UNKNOWN = 0,
	// The website provided a valid certificate.
	SITE_IDENTITY_STATUS_CERT,
	// The website provided a valid EV certificate.
	SITE_IDENTITY_STATUS_EV_CERT,
	// The website provided a valid certificate but no revocation check could be
	// performed.
	SITE_IDENTITY_STATUS_CERT_REVOCATION_UNKNOWN,
	// Site identity could not be verified because the site did not provide a
	// certificate. This is the expected state for HTTP connections.
	SITE_IDENTITY_STATUS_NO_CERT,
	// An error occured while verifying the site identity.
	SITE_IDENTITY_STATUS_ERROR,
	// The site is a trusted internal chrome page.
	SITE_IDENTITY_STATUS_INTERNAL_PAGE,
	// The profile has accessed data using an administrator-provided
	// certificate, so the administrator might be able to intercept data.
	SITE_IDENTITY_STATUS_ADMIN_PROVIDED_CERT,
	// The website provided a valid certificate, but the certificate or chain
	// is using a deprecated signature algorithm.
	SITE_IDENTITY_STATUS_DEPRECATED_SIGNATURE_ALGORITHM,
	};

	// UMA statistics for WebsiteSettings. Do not reorder or remove existing
	// fields.
	enum WebsiteSettingsAction {
	WEBSITE_SETTINGS_OPENED = 0,
	WEBSITE_SETTINGS_PERMISSIONS_TAB_SELECTED = 1,
	WEBSITE_SETTINGS_CONNECTION_TAB_SELECTED = 2,
	WEBSITE_SETTINGS_CONNECTION_TAB_SHOWN_IMMEDIATELY = 3,
	WEBSITE_SETTINGS_COOKIES_DIALOG_OPENED = 4,
	WEBSITE_SETTINGS_CHANGED_PERMISSION = 5,
	WEBSITE_SETTINGS_CERTIFICATE_DIALOG_OPENED = 6,
	// No longer used; indicated a UI viewer for SCTs.
	// WEBSITE_SETTINGS_TRANSPARENCY_VIEWER_OPENED = 7,
	WEBSITE_SETTINGS_CONNECTION_HELP_OPENED = 8,
	WEBSITE_SETTINGS_SITE_SETTINGS_OPENED = 9,
	WEBSITE_SETTINGS_COUNT
	};

	// Creates a WebsiteSettings for the passed \|url\| using the given \|ssl\| status
	// object to determine the status of the site's connection. The
	// \|WebsiteSettings\| takes ownership of the \|ui\|.
	WebsiteSettings(WebsiteSettingsUI* ui,
	Profile* profile,
	TabSpecificContentSettings* tab_specific_content_settings,
	content::WebContents* web_contents,
	const GURL& url,
	const content::SSLStatus& ssl,
	content::CertStore* cert_store);
	~WebsiteSettings() override;

	void RecordWebsiteSettingsAction(WebsiteSettingsAction action);

	// This method is called when ever a permission setting is changed.
	void OnSitePermissionChanged(ContentSettingsType type,
	ContentSetting value);

	// This method is called by the UI when the UI is closing.
	void OnUIClosing();

	// This method is called when the revoke SSL error bypass button is pressed.
	void OnRevokeSSLErrorBypassButtonPressed();

	// Accessors.
	SiteConnectionStatus site_connection_status() const {
	return site_connection_status_;
	}

	const GURL& site_url() const { return site_url_; }

	SiteIdentityStatus site_identity_status() const {
	return site_identity_status_;
	}

	base::string16 site_connection_details() const {
	return site_connection_details_;
	}

	base::string16 site_identity_details() const {
	return site_identity_details_;
	}

	base::string16 organization_name() const {
	return organization_name_;
	}

	// SiteDataObserver implementation.
	void OnSiteDataAccessed() override;

	private:
	// Initializes the \|WebsiteSettings\|.
	void Init(Profile* profile,
	const GURL& url,
	const content::SSLStatus& ssl);

	// Sets (presents) the information about the site's permissions in the \|ui_\|.
	void PresentSitePermissions();

	// Sets (presents) the information about the site's data in the \|ui_\|.
	void PresentSiteData();

	// Sets (presents) the information about the site's identity and connection
	// in the \|ui_\|.
	void PresentSiteIdentity();

	// The website settings UI displays information and controls for site-
	// specific data (local stored objects like cookies), site-specific
	// permissions (location, pop-up, plugin, etc. permissions) and site-specific
	// information (identity, connection status, etc.).
	WebsiteSettingsUI* ui_;

	// The WebContents of the active tab.
	content::WebContents* web_contents_;

	// The flag that controls whether an infobar is displayed after the website
	// settings UI is closed or not.
	bool show_info_bar_;

	// The Omnibox URL of the website for which to display site permissions and
	// site information.
	GURL site_url_;

	// Status of the website's identity verification check.
	SiteIdentityStatus site_identity_status_;

	// For secure connection \|cert_id_\| is set to the ID of the server
	// certificate. For non secure connections \|cert_id_\| is 0.
	int cert_id_;
	// For secure connection, \|signed_certificate_timestamp_ids_\| is the list of
	// all Signed Certificate Timestamps and their validation status.
	// Empty if no SCTs accompanied the certificate
	content::SignedCertificateTimestampIDStatusList
	signed_certificate_timestamp_ids_;

	// Status of the connection to the website.
	SiteConnectionStatus site_connection_status_;

	// TODO(markusheintz): Move the creation of all the base::string16 typed UI
	// strings below to the corresponding UI code, in order to prevent
	// unnecessary UTF-8 string conversions.

	// Details about the website's identity. If the website's identity has been
	// verified then \|site_identity_details_\| contains who verified the identity.
	// This string will be displayed in the UI.
	base::string16 site_identity_details_;

	// Set when the user has explicitly bypassed an SSL error for this host or
	// explicitly denied it (the latter of which is not currently possible in the
	// Chrome UI). When \|show_ssl_decision_revoke_button\| is true, the connection
	// area of the page info will include an option for the user to revoke their
	// decision to bypass the SSL error for this host.
	bool show_ssl_decision_revoke_button_;

	// Details about the connection to the website. In case of an encrypted
	// connection \|site_connection_details_\| contains encryption details, like
	// encryption strength and ssl protocol version. This string will be
	// displayed in the UI.
	base::string16 site_connection_details_;

	// For websites that provided an EV certificate \|orgainization_name_\|
	// contains the organization name of the certificate. In all other cases
	// \|organization_name\| is an empty string. This string will be displayed in
	// the UI.
	base::string16 organization_name_;

	// The \|CertStore\| provides all X509Certificates.
	content::CertStore* cert_store_;

	// The \|HostContentSettingsMap\| is the service that provides and manages
	// content settings (aka. site permissions).
	HostContentSettingsMap* content_settings_;

	// Service for managing SSL error page bypasses. Used to revoke bypass
	// decisions by users.
	ChromeSSLHostStateDelegate* chrome_ssl_host_state_delegate_;

	bool did_revoke_user_ssl_decisions_;

	DISALLOW_COPY_AND_ASSIGN(WebsiteSettings);
	};

	#endif // CHROME_BROWSER_UI_WEBSITE_SETTINGS_WEBSITE_SETTINGS_H_