extensions/browser/api/web_request/web_request_permissions.h - chromium/src - Git at Google

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef EXTENSIONS_BROWSER_API_WEB_REQUEST_WEB_REQUEST_PERMISSIONS_H_
 #define EXTENSIONS_BROWSER_API_WEB_REQUEST_WEB_REQUEST_PERMISSIONS_H_

 #include <map>
 #include <string>

 #include "base/macros.h"
 #include "base/optional.h"
 #include "extensions/common/permissions/permissions_data.h"
 #include "url/origin.h"

 class GURL;

 namespace extensions {
 class InfoMap;
 struct WebRequestInfo;
 }

 // Exposed for unit testing.
 bool IsSensitiveRequest(const extensions::WebRequestInfo& request,
                         bool is_request_from_browser,
                         bool is_request_from_webui_renderer);

 // This class is used to test whether extensions may modify web requests. It
 // should be used on the IO thread.
 class WebRequestPermissions {
  public:
   // Different host permission checking modes for CanExtensionAccessURL.
   enum HostPermissionsCheck {
     DO_NOT_CHECK_HOST = 0,            // No check.
     REQUIRE_HOST_PERMISSION_FOR_URL,  // Permission needed for given request
                                       // URL.
     REQUIRE_HOST_PERMISSION_FOR_URL_AND_INITIATOR,  // Permission needed for
                                                     // given request URL and its
                                                     // initiator.
     REQUIRE_ALL_URLS  // Permission needed for <all_urls>.
   };

   // Returns true if the request shall not be reported to extensions.
   static bool HideRequest(const extensions::InfoMap* extension_info_map,
                           const extensions::WebRequestInfo& request);

   // Helper function used only in tests, sets a variable which enables or
   // disables a CHECK.
   static void AllowAllExtensionLocationsInPublicSessionForTesting(bool value);

   // |host_permission_check| controls how permissions are checked with regard to
   // |url| and |initiator| if an initiator exists.
   static extensions::PermissionsData::AccessType CanExtensionAccessURL(
       const extensions::InfoMap* extension_info_map,
       const std::string& extension_id,
       const GURL& url,
       int tab_id,
       bool crosses_incognito,
       HostPermissionsCheck host_permissions_check,
       const base::Optional<url::Origin>& initiator);

   static bool CanExtensionAccessInitiator(
       const extensions::InfoMap* extension_info_map,
       const extensions::ExtensionId extension_id,
       const base::Optional<url::Origin>& initiator,
       int tab_id,
       bool crosses_incognito);

  private:
   DISALLOW_IMPLICIT_CONSTRUCTORS(WebRequestPermissions);
 };

 #endif  // EXTENSIONS_BROWSER_API_WEB_REQUEST_WEB_REQUEST_PERMISSIONS_H_
	// Copyright (c) 2012 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef EXTENSIONS_BROWSER_API_WEB_REQUEST_WEB_REQUEST_PERMISSIONS_H_
	#define EXTENSIONS_BROWSER_API_WEB_REQUEST_WEB_REQUEST_PERMISSIONS_H_

	#include <map>
	#include <string>

	#include "base/macros.h"
	#include "base/optional.h"
	#include "extensions/common/permissions/permissions_data.h"
	#include "url/origin.h"

	class GURL;

	namespace extensions {
	class InfoMap;
	struct WebRequestInfo;
	}

	// Exposed for unit testing.
	bool IsSensitiveRequest(const extensions::WebRequestInfo& request,
	bool is_request_from_browser,
	bool is_request_from_webui_renderer);

	// This class is used to test whether extensions may modify web requests. It
	// should be used on the IO thread.
	class WebRequestPermissions {
	public:
	// Different host permission checking modes for CanExtensionAccessURL.
	enum HostPermissionsCheck {
	DO_NOT_CHECK_HOST = 0, // No check.
	REQUIRE_HOST_PERMISSION_FOR_URL, // Permission needed for given request
	// URL.
	REQUIRE_HOST_PERMISSION_FOR_URL_AND_INITIATOR, // Permission needed for
	// given request URL and its
	// initiator.
	REQUIRE_ALL_URLS // Permission needed for <all_urls>.
	};

	// Returns true if the request shall not be reported to extensions.
	static bool HideRequest(const extensions::InfoMap* extension_info_map,
	const extensions::WebRequestInfo& request);

	// Helper function used only in tests, sets a variable which enables or
	// disables a CHECK.
	static void AllowAllExtensionLocationsInPublicSessionForTesting(bool value);

	// \|host_permission_check\| controls how permissions are checked with regard to
	// \|url\| and \|initiator\| if an initiator exists.
	static extensions::PermissionsData::AccessType CanExtensionAccessURL(
	const extensions::InfoMap* extension_info_map,
	const std::string& extension_id,
	const GURL& url,
	int tab_id,
	bool crosses_incognito,
	HostPermissionsCheck host_permissions_check,
	const base::Optional<url::Origin>& initiator);

	static bool CanExtensionAccessInitiator(
	const extensions::InfoMap* extension_info_map,
	const extensions::ExtensionId extension_id,
	const base::Optional<url::Origin>& initiator,
	int tab_id,
	bool crosses_incognito);

	private:
	DISALLOW_IMPLICIT_CONSTRUCTORS(WebRequestPermissions);
	};

	#endif // EXTENSIONS_BROWSER_API_WEB_REQUEST_WEB_REQUEST_PERMISSIONS_H_