blob: 84eae4224702f1fe456de5d1bf7748b405ad3596 [file] [log] [blame]
// Copyright 2018 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef SERVICES_NETWORK_COOKIE_SETTINGS_H_
#define SERVICES_NETWORK_COOKIE_SETTINGS_H_
#include "base/component_export.h"
#include "components/content_settings/core/common/content_settings.h"
#include "components/content_settings/core/common/cookie_settings_base.h"
#include "services/network/public/cpp/session_cookie_delete_predicate.h"
class GURL;
namespace network {
// Handles cookie access and deletion logic for the network service.
class COMPONENT_EXPORT(NETWORK_SERVICE) CookieSettings
: public content_settings::CookieSettingsBase {
public:
CookieSettings();
~CookieSettings() override;
void set_content_settings(const ContentSettingsForOneType& content_settings) {
content_settings_ = content_settings;
}
void set_block_third_party_cookies(bool block_third_party_cookies) {
block_third_party_cookies_ = block_third_party_cookies;
}
bool are_third_party_cookies_blocked() const {
return block_third_party_cookies_;
}
void set_secure_origin_cookies_allowed_schemes(
const std::vector<std::string>& secure_origin_cookies_allowed_schemes) {
secure_origin_cookies_allowed_schemes_.clear();
secure_origin_cookies_allowed_schemes_.insert(
secure_origin_cookies_allowed_schemes.begin(),
secure_origin_cookies_allowed_schemes.end());
}
void set_matching_scheme_cookies_allowed_schemes(
const std::vector<std::string>& matching_scheme_cookies_allowed_schemes) {
matching_scheme_cookies_allowed_schemes_.clear();
matching_scheme_cookies_allowed_schemes_.insert(
matching_scheme_cookies_allowed_schemes.begin(),
matching_scheme_cookies_allowed_schemes.end());
}
void set_third_party_cookies_allowed_schemes(
const std::vector<std::string>& third_party_cookies_allowed_schemes) {
third_party_cookies_allowed_schemes_.clear();
third_party_cookies_allowed_schemes_.insert(
third_party_cookies_allowed_schemes.begin(),
third_party_cookies_allowed_schemes.end());
}
void set_content_settings_for_legacy_cookie_access(
const ContentSettingsForOneType& settings);
void set_storage_access_grants(const ContentSettingsForOneType& settings) {
storage_access_grants_ = settings;
}
// Returns a predicate that takes the domain of a cookie and a bool whether
// the cookie is secure and returns true if the cookie should be deleted on
// exit.
DeleteCookiePredicate CreateDeleteCookieOnExitPredicate() const;
// content_settings::CookieSettingsBase:
void GetSettingForLegacyCookieAccess(const std::string& cookie_domain,
ContentSetting* setting) const override;
bool ShouldIgnoreSameSiteRestrictions(
const GURL& url,
const GURL& site_for_cookies) const override;
private:
// Returns whether third-party cookie blocking should be bypassed (i.e. always
// allow the cookie regardless of cookie content settings and third-party
// cookie blocking settings.
// This just checks the scheme of the |url| and |site_for_cookies|:
// - Allow cookies if the |site_for_cookies| is a chrome:// scheme URL, and
// the |url| has a secure scheme.
// - Allow cookies if the |site_for_cookies| and the |url| match in scheme
// and both have the Chrome extensions scheme.
bool ShouldAlwaysAllowCookies(const GURL& url,
const GURL& first_party_url) const;
// content_settings::CookieSettingsBase:
void GetCookieSettingInternal(const GURL& url,
const GURL& first_party_url,
bool is_third_party_request,
content_settings::SettingSource* source,
ContentSetting* cookie_setting) const override;
// Returns true if at least one content settings is session only.
bool HasSessionOnlyOrigins() const;
ContentSettingsForOneType content_settings_;
bool block_third_party_cookies_ = false;
std::set<std::string> secure_origin_cookies_allowed_schemes_;
std::set<std::string> matching_scheme_cookies_allowed_schemes_;
std::set<std::string> third_party_cookies_allowed_schemes_;
ContentSettingsForOneType settings_for_legacy_cookie_access_;
// Used to represent storage access grants provided by the StorageAccessAPI.
// Will only be populated when the StorageAccessAPI feature is enabled
// https://crbug.com/989663.
ContentSettingsForOneType storage_access_grants_;
DISALLOW_COPY_AND_ASSIGN(CookieSettings);
};
} // namespace network
#endif // SERVICES_NETWORK_COOKIE_SETTINGS_H_