blob: 73a1320158b2e407b93506b58718b295d78bcbf6 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
|
// Copyright (c) 2013 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "extensions/common/manifest_handlers/oauth2_manifest_handler.h"
#include <stddef.h>
#include "base/lazy_instance.h"
#include "base/memory/scoped_ptr.h"
#include "base/strings/utf_string_conversions.h"
#include "base/values.h"
#include "extensions/common/error_utils.h"
#include "extensions/common/manifest_constants.h"
namespace {
// Manifest keys.
const char kClientId[] = "client_id";
const char kScopes[] = "scopes";
const char kAutoApprove[] = "auto_approve";
} // namespace
namespace extensions {
namespace keys = manifest_keys;
namespace errors = manifest_errors;
OAuth2Info::OAuth2Info() : auto_approve(false) {}
OAuth2Info::~OAuth2Info() {}
static base::LazyInstance<OAuth2Info> g_empty_oauth2_info =
LAZY_INSTANCE_INITIALIZER;
// static
const OAuth2Info& OAuth2Info::GetOAuth2Info(const Extension* extension) {
OAuth2Info* info = static_cast<OAuth2Info*>(
extension->GetManifestData(keys::kOAuth2));
return info ? *info : g_empty_oauth2_info.Get();
}
OAuth2ManifestHandler::OAuth2ManifestHandler() {
}
OAuth2ManifestHandler::~OAuth2ManifestHandler() {
}
bool OAuth2ManifestHandler::Parse(Extension* extension,
base::string16* error) {
scoped_ptr<OAuth2Info> info(new OAuth2Info);
const base::DictionaryValue* dict = NULL;
if (!extension->manifest()->GetDictionary(keys::kOAuth2, &dict)) {
*error = base::ASCIIToUTF16(errors::kInvalidOAuth2ClientId);
return false;
}
// HasPath checks for whether the manifest is allowed to have
// oauth2.auto_approve based on whitelist, and if it is present.
// GetBoolean reads the value of auto_approve directly from dict to prevent
// duplicate checking.
if (extension->manifest()->HasPath(keys::kOAuth2AutoApprove) &&
!dict->GetBoolean(kAutoApprove, &info->auto_approve)) {
*error = base::ASCIIToUTF16(errors::kInvalidOAuth2AutoApprove);
return false;
}
// Component apps using auto_approve may use Chrome's client ID by
// omitting the field.
if ((!dict->GetString(kClientId, &info->client_id) ||
info->client_id.empty()) &&
(extension->location() != Manifest::COMPONENT || !info->auto_approve)) {
*error = base::ASCIIToUTF16(errors::kInvalidOAuth2ClientId);
return false;
}
const base::ListValue* list = NULL;
if (!dict->GetList(kScopes, &list)) {
*error = base::ASCIIToUTF16(errors::kInvalidOAuth2Scopes);
return false;
}
for (size_t i = 0; i < list->GetSize(); ++i) {
std::string scope;
if (!list->GetString(i, &scope)) {
*error = base::ASCIIToUTF16(errors::kInvalidOAuth2Scopes);
return false;
}
info->scopes.push_back(scope);
}
extension->SetManifestData(keys::kOAuth2, info.release());
return true;
}
const std::vector<std::string> OAuth2ManifestHandler::Keys() const {
return SingleKey(keys::kOAuth2);
}
} // namespace extensions
|
