cef/libcef/common/net/scheme_registration.cc

// Copyright (c) 2013 The Chromium Embedded Framework Authors. All rights
// reserved. Use of this source code is governed by a BSD-style license that
// can be found in the LICENSE file.

#include "libcef/common/net/scheme_registration.h"

#include "libcef/common/app_manager.h"
#include "libcef/common/net/scheme_info.h"
#include "libcef/features/runtime.h"

#include "base/containers/contains.h"
#include "content/public/common/url_constants.h"
#include "extensions/common/constants.h"
#include "url/url_constants.h"
#include "url/url_util.h"

namespace scheme {

void AddInternalSchemes(content::ContentClient::Schemes* schemes) {
  if (!cef::IsAlloyRuntimeEnabled()) {
    return;
  }

  // chrome: and chrome-devtools: schemes are registered in
  // RenderThreadImpl::RegisterSchemes().
  // Access restrictions for chrome-extension: and chrome-extension-resource:
  // schemes will be applied in AlloyContentRendererClient::WillSendRequest().
  static CefSchemeInfo internal_schemes[] = {
      {
          extensions::kExtensionScheme, true, /* is_standard */
          false,                              /* is_local */
          false,                              /* is_display_isolated */
          true,                               /* is_secure */
          true,                               /* is_cors_enabled */
          true,                               /* is_csp_bypassing */
      },
  };

  // The |is_display_isolated| value is excluded here because it's registered
  // with Blink only.
  for (size_t i = 0; i < sizeof(internal_schemes) / sizeof(internal_schemes[0]);
       ++i) {
    if (internal_schemes[i].is_standard) {
      schemes->standard_schemes.push_back(internal_schemes[i].scheme_name);
    }
    if (internal_schemes[i].is_local) {
      schemes->local_schemes.push_back(internal_schemes[i].scheme_name);
    }
    if (internal_schemes[i].is_secure) {
      schemes->secure_schemes.push_back(internal_schemes[i].scheme_name);
    }
    if (internal_schemes[i].is_cors_enabled) {
      schemes->cors_enabled_schemes.push_back(internal_schemes[i].scheme_name);
    }
    if (internal_schemes[i].is_csp_bypassing) {
      schemes->csp_bypassing_schemes.push_back(internal_schemes[i].scheme_name);
    }
    CefAppManager::Get()->AddCustomScheme(&internal_schemes[i]);
  }
}

bool IsInternalHandledScheme(const std::string& scheme) {
  static const char* schemes[] = {
      url::kAboutScheme,
      url::kBlobScheme,
      content::kChromeDevToolsScheme,
      content::kChromeUIScheme,
      content::kChromeUIUntrustedScheme,
      url::kDataScheme,
      extensions::kExtensionScheme,
      url::kFileScheme,
      url::kFileSystemScheme,
      url::kHttpScheme,
      url::kHttpsScheme,
      url::kJavaScriptScheme,
      url::kWsScheme,
      url::kWssScheme,
  };

  for (size_t i = 0; i < sizeof(schemes) / sizeof(schemes[0]); ++i) {
    if (scheme == schemes[i]) {
      return true;
    }
  }

  return false;
}

bool IsStandardScheme(const std::string& scheme) {
  url::Component scheme_comp(0, scheme.length());
  return url::IsStandard(scheme.c_str(), scheme_comp);
}

// Should return the same value as SecurityOrigin::isLocal and
// SchemeRegistry::shouldTreatURLSchemeAsCorsEnabled.
bool IsCorsEnabledScheme(const std::string& scheme) {
  return base::Contains(url::GetCorsEnabledSchemes(), scheme);
}

}  // namespace scheme
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`// Copyright (c) 2013 The Chromium Embedded Framework Authors. All rights`
			`// reserved. Use of this source code is governed by a BSD-style license that`
			`// can be found in the LICENSE file.`

Move network-related code to net/ folder 2015-11-26 03:53:12 +01:00			`#include "libcef/common/net/scheme_registration.h"`

Add CefAppManager and remove global ContentClient accessors (see issue #2969) This is the first pass in removing direct dependencies on the Alloy runtime from code that can potentially be shared between runtimes. CefBrowserHost and CefRequestContext APIs (including CefCookieManager, CefURLRequest, etc.) are not yet implemented for the Chrome runtime. Assert early if these API methods are called while the Chrome runtime is enabled. 2020-06-28 23:05:36 +02:00			`#include "libcef/common/app_manager.h"`
			`#include "libcef/common/net/scheme_info.h"`
			`#include "libcef/features/runtime.h"`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00
Update to Chromium version 93.0.4577.0 (#902210) 2021-07-23 18:40:13 +02:00			`#include "base/containers/contains.h"`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`#include "content/public/common/url_constants.h"`
Add PDF extension support (issue #1565) 2015-07-16 23:40:01 +02:00			`#include "extensions/common/constants.h"`
Update to Chromium revision 275973. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1743 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2014-06-12 22:28:58 +02:00			`#include "url/url_constants.h"`
Implement NetworkService request interception/handling (see issue #2622). Implementation notes: - Chromium change: CookieMonster::SetCookieableSchemes needs to be called immediately after the CookieMonster is created in NetworkContext:: ApplyContextParamsToBuilder. Add a Profile::GetCookieableSchemes method and NetworkContextParams.cookieable_schemes member (set from ProfileNetworkContextService::CreateNetworkContextParams) to support that. - Chromium change: Add a ContentBrowserClient::HandleExternalProtocol variant that exposes additional NetworkService request information. - GetResourceResponseFilter is not yet implemented. API changes: - Resource-related callbacks have been moved from CefRequestHandler to a new CefResourceRequestHandler interface which is returned via the GetResourceRequestHandler method. If the CefRequestHandler declines to handle a resource it can optionally be handled by the CefRequestContextHandler, if any, associated with the loading context. - The OnProtocolExecution callback has been moved from CefRequestHandler to CefResourceRequestHandler and will be called if a custom scheme request is unhandled. - Cookie send/save permission callbacks have been moved from CefRequestHandler and CefResourceHandler to CefResourceRequestHandler. - New methods added to CefResourceHandler that better match NetworkService execution sequence expectations. The old methods are now deprecated. - New methods added to CefRequest and CefResponse. Known behavior changes with the NetworkService implementation: - Modifying the \|new_url\| parameter in OnResourceRedirect will no longer result in the method being called an additional time (likely a bug in the old implementation). - Modifying the request URL in OnResourceResponse would previously cause a redirect. This behavior is now deprecated because the NetworkService does not support this functionality when using default network loaders. Temporary support has been added in combination with CefResourceHandler usage only. - Other changes to the request object in OnResourceResponse will now cause the request to be restarted. This means that OnBeforeResourceLoad, etc, will be called an additional time with the new request information. - CefResponse::GetMimeType will now be empty for non-200 responses. - Requests using custom schemes can now be handled via CefResourceRequestHandler with the same callback behavior as builtin schemes. - Redirects of custom scheme requests will now be followed as expected. - Default handling of builtin schemes can now be disabled by setting \|disable_default_handling\| to true in GetResourceRequestHandler. - Unhandled requests (custom scheme or builtin scheme with default handling disabled) will fail with an CefResponse::GetError value of ERR_UNKNOWN_URL_SCHEME. - The CefSchemeHandlerFactory::Create callback will now include cookie headers. To test: - Run `cefclient --enable-network-service`. All resources should load successfully (this tests the transparent proxy capability). - All tests pass with NetworkService disabled. - The following tests pass with NetworkService enabled: - CookieTest.* - FrameTest.* (excluding .Nav) - NavigationTest. (excluding .Redirect) - RequestHandlerTest. - RequestContextTest.Basic* - RequestContextTest.Popup* - RequestTest.* - ResourceManagerTest.* - ResourceRequestHandlerTest.* (excluding .Filter) - SchemeHandlerTest. - StreamResourceHandlerTest.* 2019-04-24 04:50:25 +02:00			`#include "url/url_util.h"`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00
			`namespace scheme {`

Update to Chromium revision ad51088c (#444943) 2017-01-23 18:36:54 +01:00			`void AddInternalSchemes(content::ContentClient::Schemes* schemes) {`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`if (!cef::IsAlloyRuntimeEnabled()) {`
Add CefAppManager and remove global ContentClient accessors (see issue #2969) This is the first pass in removing direct dependencies on the Alloy runtime from code that can potentially be shared between runtimes. CefBrowserHost and CefRequestContext APIs (including CefCookieManager, CefURLRequest, etc.) are not yet implemented for the Chrome runtime. Assert early if these API methods are called while the Chrome runtime is enabled. 2020-06-28 23:05:36 +02:00			`return;`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
Add CefAppManager and remove global ContentClient accessors (see issue #2969) This is the first pass in removing direct dependencies on the Alloy runtime from code that can potentially be shared between runtimes. CefBrowserHost and CefRequestContext APIs (including CefCookieManager, CefURLRequest, etc.) are not yet implemented for the Chrome runtime. Assert early if these API methods are called while the Chrome runtime is enabled. 2020-06-28 23:05:36 +02:00
Update to Chromium revision fc6ad471 (#342568) 2015-08-14 16:41:08 +02:00			`// chrome: and chrome-devtools: schemes are registered in`
			`// RenderThreadImpl::RegisterSchemes().`
Fix extension resource access permissions (issue #1719) 2015-10-12 20:13:13 +02:00			`// Access restrictions for chrome-extension: and chrome-extension-resource:`
Rename the current CEF runtime to Alloy (see issue #2969) As part of introducing the Chrome runtime we now need to distinguish between the classes that implement the current CEF runtime and the classes the implement the shared CEF library/runtime structure and public API. We choose the name Alloy for the current CEF runtime because it describes a combination of Chrome and other elements. Shared CEF library/runtime classes will continue to use the Cef prefix. Classes that implement the Alloy or Chrome runtime will use the Alloy or Chrome prefixes respectively. Classes that extend an existing Chrome-prefixed class will add the Cef or Alloy suffix, thereby following the existing naming pattern of Chrome-derived classes. This change applies the new naming pattern to an initial set of runtime-related classes. Additional classes/files will be renamed and moved as the Chrome runtime implementation progresses. 2020-06-28 20:29:44 +02:00			`// schemes will be applied in AlloyContentRendererClient::WillSendRequest().`
Add CefAppManager and remove global ContentClient accessors (see issue #2969) This is the first pass in removing direct dependencies on the Alloy runtime from code that can potentially be shared between runtimes. CefBrowserHost and CefRequestContext APIs (including CefCookieManager, CefURLRequest, etc.) are not yet implemented for the Chrome runtime. Assert early if these API methods are called while the Chrome runtime is enabled. 2020-06-28 23:05:36 +02:00			`static CefSchemeInfo internal_schemes[] = {`
Apply clang-format to all C, C++ and ObjC files (issue #2171) 2017-05-17 11:29:28 +02:00			`{`
			`extensions::kExtensionScheme, true, /* is_standard */`
			`false, /* is_local */`
			`false, /* is_display_isolated */`
			`true, /* is_secure */`
			`true, /* is_cors_enabled */`
			`true, /* is_csp_bypassing */`
			`},`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`};`

Update to Chromium revision ad51088c (#444943) 2017-01-23 18:36:54 +01:00			`// The \|is_display_isolated\| value is excluded here because it's registered`
			`// with Blink only.`
			`for (size_t i = 0; i < sizeof(internal_schemes) / sizeof(internal_schemes[0]);`
			`++i) {`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`if (internal_schemes[i].is_standard) {`
Update to Chromium revision ad51088c (#444943) 2017-01-23 18:36:54 +01:00			`schemes->standard_schemes.push_back(internal_schemes[i].scheme_name);`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
			`if (internal_schemes[i].is_local) {`
Update to Chromium revision ad51088c (#444943) 2017-01-23 18:36:54 +01:00			`schemes->local_schemes.push_back(internal_schemes[i].scheme_name);`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
			`if (internal_schemes[i].is_secure) {`
Update to Chromium revision ad51088c (#444943) 2017-01-23 18:36:54 +01:00			`schemes->secure_schemes.push_back(internal_schemes[i].scheme_name);`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
			`if (internal_schemes[i].is_cors_enabled) {`
Update to Chromium revision ad51088c (#444943) 2017-01-23 18:36:54 +01:00			`schemes->cors_enabled_schemes.push_back(internal_schemes[i].scheme_name);`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
			`if (internal_schemes[i].is_csp_bypassing) {`
Update to Chromium revision 939b32ee (#454471) 2017-03-03 23:37:23 +01:00			`schemes->csp_bypassing_schemes.push_back(internal_schemes[i].scheme_name);`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
Add CefAppManager and remove global ContentClient accessors (see issue #2969) This is the first pass in removing direct dependencies on the Alloy runtime from code that can potentially be shared between runtimes. CefBrowserHost and CefRequestContext APIs (including CefCookieManager, CefURLRequest, etc.) are not yet implemented for the Chrome runtime. Assert early if these API methods are called while the Chrome runtime is enabled. 2020-06-28 23:05:36 +02:00			`CefAppManager::Get()->AddCustomScheme(&internal_schemes[i]);`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`}`
			`}`

			`bool IsInternalHandledScheme(const std::string& scheme) {`
			`static const char* schemes[] = {`
Update to Chromium version 95.0.4638.0 (#920003) Known issues: - Windows ARM64 builds are currently failing due to https://crbug.com/1242884#c31 2021-09-20 11:06:23 +02:00			`url::kAboutScheme,`
			`url::kBlobScheme,`
			`content::kChromeDevToolsScheme,`
			`content::kChromeUIScheme,`
Add support for the chrome-untrusted scheme (see issue #3047) Lack of this functionality was causing print preview to fail with PdfUnseasoned enabled. 2022-02-16 22:24:41 +01:00			`content::kChromeUIUntrustedScheme,`
Update to Chromium version 95.0.4638.0 (#920003) Known issues: - Windows ARM64 builds are currently failing due to https://crbug.com/1242884#c31 2021-09-20 11:06:23 +02:00			`url::kDataScheme,`
			`extensions::kExtensionScheme,`
			`url::kFileScheme,`
			`url::kFileSystemScheme,`
			`url::kHttpScheme,`
			`url::kHttpsScheme,`
			`url::kJavaScriptScheme,`
			`url::kWsScheme,`
			`url::kWssScheme,`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`};`

			`for (size_t i = 0; i < sizeof(schemes) / sizeof(schemes[0]); ++i) {`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`if (scheme == schemes[i]) {`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`return true;`
Update source files for bracket style 2023-01-02 23:59:03 +01:00			`}`
Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`}`

			`return false;`
			`}`

Implement NetworkService request interception/handling (see issue #2622). Implementation notes: - Chromium change: CookieMonster::SetCookieableSchemes needs to be called immediately after the CookieMonster is created in NetworkContext:: ApplyContextParamsToBuilder. Add a Profile::GetCookieableSchemes method and NetworkContextParams.cookieable_schemes member (set from ProfileNetworkContextService::CreateNetworkContextParams) to support that. - Chromium change: Add a ContentBrowserClient::HandleExternalProtocol variant that exposes additional NetworkService request information. - GetResourceResponseFilter is not yet implemented. API changes: - Resource-related callbacks have been moved from CefRequestHandler to a new CefResourceRequestHandler interface which is returned via the GetResourceRequestHandler method. If the CefRequestHandler declines to handle a resource it can optionally be handled by the CefRequestContextHandler, if any, associated with the loading context. - The OnProtocolExecution callback has been moved from CefRequestHandler to CefResourceRequestHandler and will be called if a custom scheme request is unhandled. - Cookie send/save permission callbacks have been moved from CefRequestHandler and CefResourceHandler to CefResourceRequestHandler. - New methods added to CefResourceHandler that better match NetworkService execution sequence expectations. The old methods are now deprecated. - New methods added to CefRequest and CefResponse. Known behavior changes with the NetworkService implementation: - Modifying the \|new_url\| parameter in OnResourceRedirect will no longer result in the method being called an additional time (likely a bug in the old implementation). - Modifying the request URL in OnResourceResponse would previously cause a redirect. This behavior is now deprecated because the NetworkService does not support this functionality when using default network loaders. Temporary support has been added in combination with CefResourceHandler usage only. - Other changes to the request object in OnResourceResponse will now cause the request to be restarted. This means that OnBeforeResourceLoad, etc, will be called an additional time with the new request information. - CefResponse::GetMimeType will now be empty for non-200 responses. - Requests using custom schemes can now be handled via CefResourceRequestHandler with the same callback behavior as builtin schemes. - Redirects of custom scheme requests will now be followed as expected. - Default handling of builtin schemes can now be disabled by setting \|disable_default_handling\| to true in GetResourceRequestHandler. - Unhandled requests (custom scheme or builtin scheme with default handling disabled) will fail with an CefResponse::GetError value of ERR_UNKNOWN_URL_SCHEME. - The CefSchemeHandlerFactory::Create callback will now include cookie headers. To test: - Run `cefclient --enable-network-service`. All resources should load successfully (this tests the transparent proxy capability). - All tests pass with NetworkService disabled. - The following tests pass with NetworkService enabled: - CookieTest.* - FrameTest.* (excluding .Nav) - NavigationTest. (excluding .Redirect) - RequestHandlerTest. - RequestContextTest.Basic* - RequestContextTest.Popup* - RequestTest.* - ResourceManagerTest.* - ResourceRequestHandlerTest.* (excluding .Filter) - SchemeHandlerTest. - StreamResourceHandlerTest.* 2019-04-24 04:50:25 +02:00			`bool IsStandardScheme(const std::string& scheme) {`
			`url::Component scheme_comp(0, scheme.length());`
			`return url::IsStandard(scheme.c_str(), scheme_comp);`
			`}`

Add support and enable out-of-Blink CORS (fixes issue #2716) It can still be disabled for a short time by passing `--disable-features=OutOfBlinkCors` on the command-line. 2020-08-14 21:28:23 +02:00			`// Should return the same value as SecurityOrigin::isLocal and`
			`// SchemeRegistry::shouldTreatURLSchemeAsCorsEnabled.`
			`bool IsCorsEnabledScheme(const std::string& scheme) {`
			`return base::Contains(url::GetCorsEnabledSchemes(), scheme);`
			`}`

Update to Chromium revision 203701. git-svn-id: https://chromiumembedded.googlecode.com/svn/trunk@1269 5089003a-bbd8-11dd-ad1f-f1f9622dbc98 2013-06-04 19:41:37 +02:00			`} // namespace scheme`