net/cookies/cookie_setting_override.h - chromium/src - Git at Google

 // Copyright 2022 The Chromium Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef NET_COOKIES_COOKIE_SETTING_OVERRIDE_H_
 #define NET_COOKIES_COOKIE_SETTING_OVERRIDE_H_

 #include "base/containers/enum_set.h"

 namespace net {

 // An enum of possible overrides for cookie setting checks.
 // Use CookieSettingOverrides below for specifying any number of overrides
 // together. The notion of no overrides is conveyable via an empty set.
 enum class CookieSettingOverride {
   kMinValue = 0,
   // When specified, third-party cookies may be allowed based on existence of
   // TopLevelStorageAccess grants.
   kTopLevelStorageAccessGrantEligible = kMinValue,
   // When present, the caller may use an existing Storage Access API grant (if
   // a matching grant exists) to access third-party cookies. This "opt-in"
   // signal is from script execution, i.e. `document.requestStorageAccess()`.
   kStorageAccessGrantEligible = 1,
   // Allows TPCD mitigations to be skipped when checking if third party cookies
   // are allowed, meaning cookies will be blocked despite the presence of any of
   // these grants/heuristics.
   kSkipTPCDHeuristicsGrant = 2,
   kSkipTPCDMetadataGrant = 3,
   // Corresponds to skipping checks on the TPCD_TRIAL content setting, which
   // backs 3PC accesses granted via 3PC deprecation trial.
   kSkipTPCDTrial = 4,
   // Corresponds to skipping checks on the TOP_LEVEL_TPCD_TRIAL content setting,
   // which backs 3PC accesses granted via top-level 3PC deprecation trial.
   kSkipTopLevelTPCDTrial = 5,
   // Corresponds to checks that may grant 3PCs when a request opts into
   // credentials and CORS protection.
   // One example are subresource requests that are same-site with the top-level
   // site but originate from a cross-site embed.
   kCrossSiteCredentialedWithCORS = 6,
   // When specified, third party cookies should be forced disabled.
   // Other cookie exceptions like the storage access API could result in
   // third party cookies still being used when this is forced disabled.
   // Used by WebView.
   kForceDisableThirdPartyCookies = 7,
   // When present, the caller may use an existing Storage Access API grant to
   // access third-party cookies. Note that some integrations which have more
   // stringent requirements, such as the FedCM/SAA integration (which requires
   // the `identity-credentials-get` policy), are not in scope for this variant.
   kStorageAccessGrantEligibleViaHeader = 8,

   kMaxValue = kStorageAccessGrantEligibleViaHeader,
 };

 using CookieSettingOverrides = base::EnumSet<CookieSettingOverride,
                                              CookieSettingOverride::kMinValue,
                                              CookieSettingOverride::kMaxValue>;

 }  // namespace net

 #endif  // NET_COOKIES_COOKIE_SETTING_OVERRIDE_H_
	// Copyright 2022 The Chromium Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef NET_COOKIES_COOKIE_SETTING_OVERRIDE_H_
	#define NET_COOKIES_COOKIE_SETTING_OVERRIDE_H_

	#include "base/containers/enum_set.h"

	namespace net {

	// An enum of possible overrides for cookie setting checks.
	// Use CookieSettingOverrides below for specifying any number of overrides
	// together. The notion of no overrides is conveyable via an empty set.
	enum class CookieSettingOverride {
	kMinValue = 0,
	// When specified, third-party cookies may be allowed based on existence of
	// TopLevelStorageAccess grants.
	kTopLevelStorageAccessGrantEligible = kMinValue,
	// When present, the caller may use an existing Storage Access API grant (if
	// a matching grant exists) to access third-party cookies. This "opt-in"
	// signal is from script execution, i.e. `document.requestStorageAccess()`.
	kStorageAccessGrantEligible = 1,
	// Allows TPCD mitigations to be skipped when checking if third party cookies
	// are allowed, meaning cookies will be blocked despite the presence of any of
	// these grants/heuristics.
	kSkipTPCDHeuristicsGrant = 2,
	kSkipTPCDMetadataGrant = 3,
	// Corresponds to skipping checks on the TPCD_TRIAL content setting, which
	// backs 3PC accesses granted via 3PC deprecation trial.
	kSkipTPCDTrial = 4,
	// Corresponds to skipping checks on the TOP_LEVEL_TPCD_TRIAL content setting,
	// which backs 3PC accesses granted via top-level 3PC deprecation trial.
	kSkipTopLevelTPCDTrial = 5,
	// Corresponds to checks that may grant 3PCs when a request opts into
	// credentials and CORS protection.
	// One example are subresource requests that are same-site with the top-level
	// site but originate from a cross-site embed.
	kCrossSiteCredentialedWithCORS = 6,
	// When specified, third party cookies should be forced disabled.
	// Other cookie exceptions like the storage access API could result in
	// third party cookies still being used when this is forced disabled.
	// Used by WebView.
	kForceDisableThirdPartyCookies = 7,
	// When present, the caller may use an existing Storage Access API grant to
	// access third-party cookies. Note that some integrations which have more
	// stringent requirements, such as the FedCM/SAA integration (which requires
	// the `identity-credentials-get` policy), are not in scope for this variant.
	kStorageAccessGrantEligibleViaHeader = 8,

	kMaxValue = kStorageAccessGrantEligibleViaHeader,
	};

	using CookieSettingOverrides = base::EnumSet<CookieSettingOverride,
	CookieSettingOverride::kMinValue,
	CookieSettingOverride::kMaxValue>;

	} // namespace net

	#endif // NET_COOKIES_COOKIE_SETTING_OVERRIDE_H_