// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/push_messaging/push_messaging_permission_context.h"
#include "chrome/browser/content_settings/host_content_settings_map_factory.h"
#include "chrome/browser/notifications/notification_permission_context.h"
#include "chrome/browser/notifications/notification_permission_context_factory.h"
#include "chrome/browser/permissions/permission_request_id.h"
#include "chrome/browser/permissions/permission_uma_util.h"
#include "chrome/browser/profiles/profile.h"
#include "components/content_settings/core/browser/host_content_settings_map.h"
#include "content/public/browser/browser_thread.h"
#include "content/public/browser/permission_type.h"
#include "content/public/browser/web_contents.h"
#include "content/public/browser/web_contents_delegate.h"
#include "content/public/common/origin_util.h"
PushMessagingPermissionContext::PushMessagingPermissionContext(Profile* profile)
: PermissionContextBase(profile,
content::PermissionType::PUSH_MESSAGING,
CONTENT_SETTINGS_TYPE_PUSH_MESSAGING),
profile_(profile),
weak_factory_ui_thread_(this) {}
PushMessagingPermissionContext::~PushMessagingPermissionContext() {}
ContentSetting PushMessagingPermissionContext::GetPermissionStatus(
const GURL& requesting_origin,
const GURL& embedding_origin) const {
// It's possible for this to return CONTENT_SETTING_BLOCK in cases where
// HostContentSettingsMap::GetContentSetting returns CONTENT_SETTING_ALLOW.
// TODO(johnme): This is likely to break assumptions made elsewhere, so we
// should try to remove this quirk.
#if defined(ENABLE_NOTIFICATIONS)
if (requesting_origin != embedding_origin)
return CONTENT_SETTING_BLOCK;
ContentSetting push_content_setting =
PermissionContextBase::GetPermissionStatus(requesting_origin,
embedding_origin);
NotificationPermissionContext* notification_context =
NotificationPermissionContextFactory::GetForProfile(profile_);
DCHECK(notification_context);
ContentSetting notifications_permission =
notification_context->GetPermissionStatus(requesting_origin,
embedding_origin);
if (notifications_permission == CONTENT_SETTING_BLOCK ||
push_content_setting == CONTENT_SETTING_BLOCK) {
return CONTENT_SETTING_BLOCK;
}
if (notifications_permission == CONTENT_SETTING_ASK ||
push_content_setting == CONTENT_SETTING_ASK) {
return CONTENT_SETTING_ASK;
}
DCHECK_EQ(CONTENT_SETTING_ALLOW, notifications_permission);
DCHECK_EQ(CONTENT_SETTING_ALLOW, push_content_setting);
return CONTENT_SETTING_ALLOW;
#else
return CONTENT_SETTING_BLOCK;
#endif
}
// Unlike other permissions, push is decided by the following algorithm
// - You need to request it from a top level domain
// - You need to have notification permission granted.
// - You need to not have push permission explicitly blocked.
// - If those 3 things are true it is granted without prompting.
// This is done to avoid double prompting for notifications and push.
void PushMessagingPermissionContext::DecidePermission(
content::WebContents* web_contents,
const PermissionRequestID& id,
const GURL& requesting_origin,
const GURL& embedding_origin,
bool user_gesture,
const BrowserPermissionCallback& callback) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
#if defined(ENABLE_NOTIFICATIONS)
if (requesting_origin != embedding_origin) {
NotifyPermissionSet(id, requesting_origin, embedding_origin, callback,
false /* persist */, CONTENT_SETTING_BLOCK);
return;
}
NotificationPermissionContext* notification_context =
NotificationPermissionContextFactory::GetForProfile(profile_);
DCHECK(notification_context);
notification_context->RequestPermission(
web_contents, id, requesting_origin, user_gesture,
base::Bind(&PushMessagingPermissionContext::DecidePushPermission,
weak_factory_ui_thread_.GetWeakPtr(), id, requesting_origin,
embedding_origin, callback));
#else
NotifyPermissionSet(id, requesting_origin, embedding_origin, callback,
false /* persist */, CONTENT_SETTING_BLOCK);
#endif
}
bool PushMessagingPermissionContext::IsRestrictedToSecureOrigins() const {
return true;
}
void PushMessagingPermissionContext::DecidePushPermission(
const PermissionRequestID& id,
const GURL& requesting_origin,
const GURL& embedding_origin,
const BrowserPermissionCallback& callback,
ContentSetting notification_content_setting) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
ContentSetting push_content_setting =
HostContentSettingsMapFactory::GetForProfile(profile_)
->GetContentSettingAndMaybeUpdateLastUsage(
requesting_origin, embedding_origin, content_settings_type(),
std::string());
if (push_content_setting == CONTENT_SETTING_BLOCK) {
DVLOG(1) << "Push permission was explicitly blocked.";
PermissionUmaUtil::PermissionDenied(permission_type(), requesting_origin);
NotifyPermissionSet(id, requesting_origin, embedding_origin, callback,
true /* persist */, CONTENT_SETTING_BLOCK);
return;
}
if (notification_content_setting != CONTENT_SETTING_ALLOW) {
DVLOG(1) << "Notification permission has not been granted.";
NotifyPermissionSet(id, requesting_origin, embedding_origin, callback,
false /* persist */, notification_content_setting);
return;
}
PermissionUmaUtil::PermissionGranted(permission_type(), requesting_origin);
NotifyPermissionSet(id, requesting_origin, embedding_origin, callback,
true /* persist */, CONTENT_SETTING_ALLOW);
}