1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
|
// Copyright 2015 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/notifications/notification_permission_context.h"
#include <queue>
#include "base/callback.h"
#include "base/location.h"
#include "base/rand_util.h"
#include "base/single_thread_task_runner.h"
#include "base/thread_task_runner_handle.h"
#include "base/timer/timer.h"
#include "chrome/browser/notifications/desktop_notification_profile_util.h"
#include "chrome/browser/permissions/permission_request_id.h"
#include "chrome/browser/profiles/profile.h"
#include "components/content_settings/core/common/content_settings_pattern.h"
#include "content/public/browser/browser_thread.h"
#include "content/public/browser/permission_type.h"
#include "content/public/browser/render_frame_host.h"
#include "content/public/browser/web_contents_observer.h"
#include "content/public/browser/web_contents_user_data.h"
#include "url/gurl.h"
namespace {
// At most one of these is attached to each WebContents. It allows posting
// delayed tasks whose timer only counts down whilst the WebContents is visible
// (and whose timer is reset whenever the WebContents stops being visible).
class VisibilityTimerTabHelper
: public content::WebContentsObserver,
public content::WebContentsUserData<VisibilityTimerTabHelper> {
public:
~VisibilityTimerTabHelper() override {}
// Runs |task| after the WebContents has been visible for a consecutive
// duration of at least |visible_delay|.
void PostTaskAfterVisibleDelay(const tracked_objects::Location& from_here,
const base::Closure& task,
base::TimeDelta visible_delay);
// WebContentsObserver:
void WasShown() override;
void WasHidden() override;
void WebContentsDestroyed() override;
private:
friend class content::WebContentsUserData<VisibilityTimerTabHelper>;
explicit VisibilityTimerTabHelper(content::WebContents* contents);
void RunTask(const base::Closure& task);
bool is_visible_;
std::queue<scoped_ptr<base::Timer>> task_queue_;
DISALLOW_COPY_AND_ASSIGN(VisibilityTimerTabHelper);
};
VisibilityTimerTabHelper::VisibilityTimerTabHelper(
content::WebContents* contents)
: content::WebContentsObserver(contents) {
if (!contents->GetMainFrame()) {
is_visible_ = false;
} else {
switch (contents->GetMainFrame()->GetVisibilityState()) {
case blink::WebPageVisibilityStateHidden:
case blink::WebPageVisibilityStatePrerender:
is_visible_ = false;
break;
case blink::WebPageVisibilityStateVisible:
is_visible_ = true;
break;
}
}
}
void VisibilityTimerTabHelper::PostTaskAfterVisibleDelay(
const tracked_objects::Location& from_here,
const base::Closure& task,
base::TimeDelta visible_delay) {
// Safe to use Unretained, as destroying this will destroy task_queue_, hence
// cancelling all timers.
task_queue_.push(make_scoped_ptr(new base::Timer(
from_here, visible_delay, base::Bind(&VisibilityTimerTabHelper::RunTask,
base::Unretained(this), task),
false /* is_repeating */)));
DCHECK(!task_queue_.back()->IsRunning());
if (is_visible_ && task_queue_.size() == 1)
task_queue_.front()->Reset();
}
void VisibilityTimerTabHelper::WasShown() {
if (!is_visible_ && !task_queue_.empty())
task_queue_.front()->Reset();
is_visible_ = true;
}
void VisibilityTimerTabHelper::WasHidden() {
if (is_visible_ && !task_queue_.empty())
task_queue_.front()->Stop();
is_visible_ = false;
}
void VisibilityTimerTabHelper::WebContentsDestroyed() {
// Delete ourselves, to avoid running tasks after WebContents is destroyed.
web_contents()->RemoveUserData(UserDataKey());
// |this| has been deleted now.
}
void VisibilityTimerTabHelper::RunTask(const base::Closure& task) {
DCHECK(is_visible_);
task.Run();
task_queue_.pop();
if (!task_queue_.empty()) {
task_queue_.front()->Reset();
return;
}
web_contents()->RemoveUserData(UserDataKey());
// |this| has been deleted now.
}
} // namespace
DEFINE_WEB_CONTENTS_USER_DATA_KEY(VisibilityTimerTabHelper);
NotificationPermissionContext::NotificationPermissionContext(Profile* profile)
: PermissionContextBase(profile,
content::PermissionType::NOTIFICATIONS,
CONTENT_SETTINGS_TYPE_NOTIFICATIONS),
weak_factory_ui_thread_(this) {}
NotificationPermissionContext::~NotificationPermissionContext() {}
void NotificationPermissionContext::ResetPermission(
const GURL& requesting_origin,
const GURL& embedder_origin) {
DesktopNotificationProfileUtil::ClearSetting(
profile(), ContentSettingsPattern::FromURLNoWildcard(requesting_origin));
}
void NotificationPermissionContext::DecidePermission(
content::WebContents* web_contents,
const PermissionRequestID& id,
const GURL& requesting_origin,
const GURL& embedding_origin,
bool user_gesture,
const BrowserPermissionCallback& callback) {
DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
// Notifications permission is always denied in incognito. To prevent sites
// from using that to detect whether incognito mode is active, we deny after a
// random time delay, to simulate a user clicking a bubble/infobar. See also
// ContentSettingsRegistry::Init, which marks notifications as
// INHERIT_IN_INCOGNITO_EXCEPT_ALLOW, and
// PermissionMenuModel::PermissionMenuModel which prevents users from manually
// allowing the permission.
if (profile()->IsOffTheRecord()) {
// Random number of seconds in the range [1.0, 2.0).
double delay_seconds = 1.0 + 1.0 * base::RandDouble();
VisibilityTimerTabHelper::CreateForWebContents(web_contents);
VisibilityTimerTabHelper::FromWebContents(web_contents)
->PostTaskAfterVisibleDelay(
FROM_HERE,
base::Bind(&NotificationPermissionContext::NotifyPermissionSet,
weak_factory_ui_thread_.GetWeakPtr(), id,
requesting_origin, embedding_origin, callback,
true /* persist */, CONTENT_SETTING_BLOCK),
base::TimeDelta::FromSecondsD(delay_seconds));
return;
}
PermissionContextBase::DecidePermission(web_contents, id, requesting_origin,
embedding_origin, user_gesture,
callback);
}
// Unlike other permission types, granting a notification for a given origin
// will not take into account the |embedder_origin|, it will only be based
// on the requesting iframe origin.
// TODO(mukai) Consider why notifications behave differently than
// other permissions. https://crbug.com/416894
void NotificationPermissionContext::UpdateContentSetting(
const GURL& requesting_origin,
const GURL& embedder_origin,
ContentSetting content_setting) {
DCHECK(content_setting == CONTENT_SETTING_ALLOW ||
content_setting == CONTENT_SETTING_BLOCK);
if (content_setting == CONTENT_SETTING_ALLOW) {
DesktopNotificationProfileUtil::GrantPermission(profile(),
requesting_origin);
} else {
DesktopNotificationProfileUtil::DenyPermission(profile(),
requesting_origin);
}
}
bool NotificationPermissionContext::IsRestrictedToSecureOrigins() const {
return false;
}
|
