WebKitSecurityManager.cpp [plain text]
#include "config.h"
#include "WebKitSecurityManager.h"
#include "WebKitSecurityManagerPrivate.h"
#include "WebKitWebContextPrivate.h"
#include "WebProcessPool.h"
#include <WebCore/SchemeRegistry.h>
using namespace WebKit;
typedef enum {
SecurityPolicyLocal,
SecurityPolicyNoAccess,
SecurityPolicyDisplayIsolated,
SecurityPolicySecure,
SecurityPolicyCORSEnabled,
SecurityPolicyEmptyDocument
} SecurityPolicy;
struct _WebKitSecurityManagerPrivate {
WebKitWebContext* webContext;
};
WEBKIT_DEFINE_TYPE(WebKitSecurityManager, webkit_security_manager, G_TYPE_OBJECT)
static void webkit_security_manager_class_init(WebKitSecurityManagerClass*)
{
}
WebKitSecurityManager* webkitSecurityManagerCreate(WebKitWebContext* webContext)
{
WebKitSecurityManager* manager = WEBKIT_SECURITY_MANAGER(g_object_new(WEBKIT_TYPE_SECURITY_MANAGER, NULL));
manager->priv->webContext = webContext;
return manager;
}
static void registerSecurityPolicyForURIScheme(WebKitSecurityManager* manager, const char* scheme, SecurityPolicy policy)
{
String urlScheme = String::fromUTF8(scheme);
WebProcessPool* webContext = webkitWebContextGetContext(manager->priv->webContext);
switch (policy) {
case SecurityPolicyLocal:
WebCore::SchemeRegistry::registerURLSchemeAsLocal(urlScheme);
webContext->registerURLSchemeAsLocal(urlScheme);
break;
case SecurityPolicyNoAccess:
WebCore::SchemeRegistry::registerURLSchemeAsNoAccess(urlScheme);
webContext->registerURLSchemeAsNoAccess(urlScheme);
break;
case SecurityPolicyDisplayIsolated:
WebCore::SchemeRegistry::registerURLSchemeAsDisplayIsolated(urlScheme);
webContext->registerURLSchemeAsDisplayIsolated(urlScheme);
break;
case SecurityPolicySecure:
WebCore::SchemeRegistry::registerURLSchemeAsSecure(urlScheme);
webContext->registerURLSchemeAsSecure(urlScheme);
break;
case SecurityPolicyCORSEnabled:
WebCore::SchemeRegistry::registerURLSchemeAsCORSEnabled(urlScheme);
webContext->registerURLSchemeAsCORSEnabled(urlScheme);
break;
case SecurityPolicyEmptyDocument:
WebCore::SchemeRegistry::registerURLSchemeAsEmptyDocument(urlScheme);
webContext->registerURLSchemeAsEmptyDocument(urlScheme);
break;
}
}
static bool checkSecurityPolicyForURIScheme(const char* scheme, SecurityPolicy policy)
{
String urlScheme = String::fromUTF8(scheme);
switch (policy) {
case SecurityPolicyLocal:
return WebCore::SchemeRegistry::shouldTreatURLSchemeAsLocal(urlScheme);
case SecurityPolicyNoAccess:
return WebCore::SchemeRegistry::shouldTreatURLSchemeAsNoAccess(urlScheme);
case SecurityPolicyDisplayIsolated:
return WebCore::SchemeRegistry::shouldTreatURLSchemeAsDisplayIsolated(urlScheme);
case SecurityPolicySecure:
return WebCore::SchemeRegistry::shouldTreatURLSchemeAsSecure(urlScheme);
case SecurityPolicyCORSEnabled:
return WebCore::SchemeRegistry::shouldTreatURLSchemeAsCORSEnabled(urlScheme);
case SecurityPolicyEmptyDocument:
return WebCore::SchemeRegistry::shouldLoadURLSchemeAsEmptyDocument(urlScheme);
}
return false;
}
void webkit_security_manager_register_uri_scheme_as_local(WebKitSecurityManager* manager, const char* scheme)
{
g_return_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager));
g_return_if_fail(scheme);
registerSecurityPolicyForURIScheme(manager, scheme, SecurityPolicyLocal);
}
gboolean webkit_security_manager_uri_scheme_is_local(WebKitSecurityManager* manager, const char* scheme)
{
g_return_val_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager), FALSE);
g_return_val_if_fail(scheme, FALSE);
return checkSecurityPolicyForURIScheme(scheme, SecurityPolicyLocal);
}
void webkit_security_manager_register_uri_scheme_as_no_access(WebKitSecurityManager* manager, const char* scheme)
{
g_return_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager));
g_return_if_fail(scheme);
registerSecurityPolicyForURIScheme(manager, scheme, SecurityPolicyNoAccess);
}
gboolean webkit_security_manager_uri_scheme_is_no_access(WebKitSecurityManager* manager, const char* scheme)
{
g_return_val_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager), FALSE);
g_return_val_if_fail(scheme, FALSE);
return checkSecurityPolicyForURIScheme(scheme, SecurityPolicyNoAccess);
}
void webkit_security_manager_register_uri_scheme_as_display_isolated(WebKitSecurityManager* manager, const char* scheme)
{
g_return_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager));
g_return_if_fail(scheme);
registerSecurityPolicyForURIScheme(manager, scheme, SecurityPolicyDisplayIsolated);
}
gboolean webkit_security_manager_uri_scheme_is_display_isolated(WebKitSecurityManager* manager, const char* scheme)
{
g_return_val_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager), FALSE);
g_return_val_if_fail(scheme, FALSE);
return checkSecurityPolicyForURIScheme(scheme, SecurityPolicyDisplayIsolated);
}
void webkit_security_manager_register_uri_scheme_as_secure(WebKitSecurityManager* manager, const char* scheme)
{
g_return_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager));
g_return_if_fail(scheme);
registerSecurityPolicyForURIScheme(manager, scheme, SecurityPolicySecure);
}
gboolean webkit_security_manager_uri_scheme_is_secure(WebKitSecurityManager* manager, const char* scheme)
{
g_return_val_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager), FALSE);
g_return_val_if_fail(scheme, FALSE);
return checkSecurityPolicyForURIScheme(scheme, SecurityPolicySecure);
}
void webkit_security_manager_register_uri_scheme_as_cors_enabled(WebKitSecurityManager* manager, const char* scheme)
{
g_return_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager));
g_return_if_fail(scheme);
registerSecurityPolicyForURIScheme(manager, scheme, SecurityPolicyCORSEnabled);
}
gboolean webkit_security_manager_uri_scheme_is_cors_enabled(WebKitSecurityManager* manager, const char* scheme)
{
g_return_val_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager), FALSE);
g_return_val_if_fail(scheme, FALSE);
return checkSecurityPolicyForURIScheme(scheme, SecurityPolicyCORSEnabled);
}
void webkit_security_manager_register_uri_scheme_as_empty_document(WebKitSecurityManager* manager, const char* scheme)
{
g_return_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager));
g_return_if_fail(scheme);
registerSecurityPolicyForURIScheme(manager, scheme, SecurityPolicyEmptyDocument);
}
gboolean webkit_security_manager_uri_scheme_is_empty_document(WebKitSecurityManager* manager, const char* scheme)
{
g_return_val_if_fail(WEBKIT_IS_SECURITY_MANAGER(manager), FALSE);
g_return_val_if_fail(scheme, FALSE);
return checkSecurityPolicyForURIScheme(scheme, SecurityPolicyEmptyDocument);
}