// Copyright (c) 2010 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/net/chrome_cookie_policy.h"
#include "base/string_util.h"
#include "chrome/browser/browser_list.h"
#include "chrome/browser/chrome_thread.h"
#include "chrome/browser/cookie_prompt_modal_dialog_delegate.h"
#include "chrome/browser/host_content_settings_map.h"
#include "chrome/browser/message_box_handler.h"
#include "net/base/net_errors.h"
#include "net/base/static_cookie_policy.h"
// If we queue up more than this number of completions, then switch from ASK to
// BLOCK. More than this number of requests at once seems like it could be a
// sign of trouble anyways.
static const size_t kMaxCompletionsPerHost = 10000;
// ----------------------------------------------------------------------------
// ChromeCookiePolicy cannot just subclass the delegate interface because we
// may have several prompts pending.
class ChromeCookiePolicy::PromptDelegate
: public CookiePromptModalDialogDelegate {
public:
PromptDelegate(ChromeCookiePolicy* cookie_policy, const std::string& host)
: cookie_policy_(cookie_policy),
host_(host) {
}
// CookiesPromptViewDelegate methods:
virtual void AllowSiteData(bool session_expire);
virtual void BlockSiteData();
private:
void NotifyDone(int policy);
scoped_refptr<ChromeCookiePolicy> cookie_policy_;
std::string host_;
};
void ChromeCookiePolicy::PromptDelegate::AllowSiteData(bool session_expire) {
int policy = net::OK;
if (session_expire)
policy = net::OK_FOR_SESSION_ONLY;
NotifyDone(policy);
}
void ChromeCookiePolicy::PromptDelegate::BlockSiteData() {
NotifyDone(net::ERR_ACCESS_DENIED);
}
void ChromeCookiePolicy::PromptDelegate::NotifyDone(int policy) {
cookie_policy_->DidPromptForSetCookie(host_, policy);
delete this;
}
// ----------------------------------------------------------------------------
ChromeCookiePolicy::ChromeCookiePolicy(HostContentSettingsMap* map)
: host_content_settings_map_(map) {
}
ChromeCookiePolicy::~ChromeCookiePolicy() {
DCHECK(host_completions_map_.empty());
}
int ChromeCookiePolicy::CanGetCookies(const GURL& url,
const GURL& first_party,
net::CompletionCallback* callback) {
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::IO));
if (host_content_settings_map_->BlockThirdPartyCookies()) {
net::StaticCookiePolicy policy(
net::StaticCookiePolicy::BLOCK_THIRD_PARTY_COOKIES);
int rv = policy.CanGetCookies(url, first_party, NULL);
if (rv != net::OK)
return rv;
}
int policy = CheckPolicy(url);
if (policy != net::ERR_IO_PENDING)
return policy;
DCHECK(callback);
// If we are currently prompting the user for a 'set-cookie' matching this
// host, then we need to defer reading cookies.
HostCompletionsMap::iterator it = host_completions_map_.find(url.host());
if (it == host_completions_map_.end()) {
policy = net::OK;
} else if (it->second.size() >= kMaxCompletionsPerHost) {
LOG(ERROR) << "Would exceed kMaxCompletionsPerHost";
policy = net::ERR_ACCESS_DENIED;
} else {
it->second.push_back(Completion::ForGetCookies(callback));
policy = net::ERR_IO_PENDING;
}
return policy;
}
int ChromeCookiePolicy::CanSetCookie(const GURL& url,
const GURL& first_party,
const std::string& cookie_line,
net::CompletionCallback* callback) {
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::IO));
if (host_content_settings_map_->BlockThirdPartyCookies()) {
net::StaticCookiePolicy policy(
net::StaticCookiePolicy::BLOCK_THIRD_PARTY_COOKIES);
int rv = policy.CanSetCookie(url, first_party, cookie_line, NULL);
if (rv != net::OK)
return rv;
}
int policy = CheckPolicy(url);
if (policy != net::ERR_IO_PENDING)
return policy;
DCHECK(callback);
// Else, ask the user...
Completions& completions = host_completions_map_[url.host()];
if (completions.size() >= kMaxCompletionsPerHost) {
LOG(ERROR) << "Would exceed kMaxCompletionsPerHost";
policy = net::ERR_ACCESS_DENIED;
} else {
completions.push_back(Completion::ForSetCookie(callback));
policy = net::ERR_IO_PENDING;
}
PromptForSetCookie(url, cookie_line);
return policy;
}
int ChromeCookiePolicy::CheckPolicy(const GURL& url) const {
ContentSetting setting = host_content_settings_map_->GetContentSetting(
url, CONTENT_SETTINGS_TYPE_COOKIES);
if (setting == CONTENT_SETTING_BLOCK)
return net::ERR_ACCESS_DENIED;
if (setting == CONTENT_SETTING_ALLOW)
return net::OK;
if (setting == CONTENT_SETTING_SESSION_ONLY)
return net::OK_FOR_SESSION_ONLY;
return net::ERR_IO_PENDING; // Need to prompt.
}
void ChromeCookiePolicy::PromptForSetCookie(const GURL& url,
const std::string& cookie_line) {
if (!ChromeThread::CurrentlyOn(ChromeThread::UI)) {
ChromeThread::PostTask(
ChromeThread::UI, FROM_HERE,
NewRunnableMethod(this, &ChromeCookiePolicy::PromptForSetCookie, url,
cookie_line));
return;
}
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::UI));
const std::string& host = url.host();
// The policy may have changed (due to the "remember" option)
int policy = CheckPolicy(url);
if (policy != net::ERR_IO_PENDING) {
DidPromptForSetCookie(host, policy);
return;
}
// Show the prompt on top of the current tab.
Browser* browser = BrowserList::GetLastActive();
if (!browser || !browser->GetSelectedTabContents()) {
DidPromptForSetCookie(host, net::ERR_ACCESS_DENIED);
return;
}
RunCookiePrompt(browser->GetSelectedTabContents(),
host_content_settings_map_, url, cookie_line,
new PromptDelegate(this, host));
}
void ChromeCookiePolicy::DidPromptForSetCookie(const std::string& host,
int policy) {
if (!ChromeThread::CurrentlyOn(ChromeThread::IO)) {
ChromeThread::PostTask(
ChromeThread::IO, FROM_HERE,
NewRunnableMethod(this, &ChromeCookiePolicy::DidPromptForSetCookie,
host, policy));
return;
}
DCHECK(ChromeThread::CurrentlyOn(ChromeThread::IO));
// Notify all callbacks, starting with the first until we hit another that
// is for a 'set-cookie'.
HostCompletionsMap::iterator it = host_completions_map_.find(host);
CHECK(it != host_completions_map_.end());
Completions& completions = it->second;
CHECK(!completions.empty() && completions[0].is_set_cookie_request());
// Gather the list of callbacks to notify, and remove them from the
// completions list before handing control to the callbacks (in case
// they should call back into us to modify host_completions_map_).
std::vector<net::CompletionCallback*> callbacks;
callbacks.push_back(completions[0].callback());
size_t i = 1;
for (; i < completions.size(); ++i) {
if (completions[i].is_set_cookie_request())
break;
callbacks.push_back(completions[i].callback());
}
completions.erase(completions.begin(), completions.begin() + i);
if (completions.empty())
host_completions_map_.erase(it);
for (size_t j = 0; j < callbacks.size(); ++j)
callbacks[j]->Run(policy);
}