chrome/browser/ssl/https_upgrades_util.h - chromium/src - Git at Google

 // Copyright 2023 The Chromium Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef CHROME_BROWSER_SSL_HTTPS_UPGRADES_UTIL_H_
 #define CHROME_BROWSER_SSL_HTTPS_UPGRADES_UTIL_H_

 #include "base/memory/raw_ptr.h"
 #include "base/memory/stack_allocated.h"
 #include "base/values.h"
 #include "components/security_interstitials/core/https_only_mode_metrics.h"
 #include "url/gurl.h"

 class PrefService;

 // Helper for applying the HttpAllowlist enterprise policy. Checks if the
 // hostname of `url` matches any of the hostnames or hostname patterns in the
 // `allowed_hosts` list. Does not allow blanket host wildcards (i.e., "*" which
 // matches all hosts), but does allow partial domain wildcards (e.g.,
 // "[*.]example.com"). Entries in `allowed_hosts` should follow the rules in
 // https://chromeenterprise.google/policies/url-patterns/ (or they'll be
 // ignored).
 bool IsHostnameInHttpAllowlist(const GURL& url, PrefService* prefs);

 // Adds `hostnames` to the HttpAllowlist enterprise policy for testing.
 // Expects the allowlist to be empty before updating it.
 void AllowHttpForHostnamesForTesting(const std::vector<std::string>& hostnames,
                                      PrefService* prefs);

 // Clears HttpAllowlist enterprise policy for testing.
 void ClearHttpAllowlistForHostnamesForTesting(PrefService* prefs);

 // Returns true if the HTTPS-First Mode interstitial is enabled globally by the
 // UI pref or for this site through Site Engagement heuristic.
 bool IsInterstitialEnabled(
     const security_interstitials::https_only_mode::HttpInterstitialState&
         state);

 // An instance of this class adds `hostnames` to the HttpAllowlist enterprise
 // policy for testing and clears the allowlist when it goes out of scope.
 class ScopedAllowHttpForHostnamesForTesting {
   STACK_ALLOCATED();

  public:
   explicit ScopedAllowHttpForHostnamesForTesting(
       const std::vector<std::string>& hostnames,
       PrefService* prefs);
   ScopedAllowHttpForHostnamesForTesting(
       const ScopedAllowHttpForHostnamesForTesting&) = delete;
   ScopedAllowHttpForHostnamesForTesting& operator=(
       const ScopedAllowHttpForHostnamesForTesting&) = delete;

   ~ScopedAllowHttpForHostnamesForTesting();

  private:
   raw_ptr<PrefService> prefs_;
 };

 #endif  // CHROME_BROWSER_SSL_HTTPS_UPGRADES_UTIL_H_
	// Copyright 2023 The Chromium Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef CHROME_BROWSER_SSL_HTTPS_UPGRADES_UTIL_H_
	#define CHROME_BROWSER_SSL_HTTPS_UPGRADES_UTIL_H_

	#include "base/memory/raw_ptr.h"
	#include "base/memory/stack_allocated.h"
	#include "base/values.h"
	#include "components/security_interstitials/core/https_only_mode_metrics.h"
	#include "url/gurl.h"

	class PrefService;

	// Helper for applying the HttpAllowlist enterprise policy. Checks if the
	// hostname of `url` matches any of the hostnames or hostname patterns in the
	// `allowed_hosts` list. Does not allow blanket host wildcards (i.e., "*" which
	// matches all hosts), but does allow partial domain wildcards (e.g.,
	// "[*.]example.com"). Entries in `allowed_hosts` should follow the rules in
	// https://chromeenterprise.google/policies/url-patterns/ (or they'll be
	// ignored).
	bool IsHostnameInHttpAllowlist(const GURL& url, PrefService* prefs);

	// Adds `hostnames` to the HttpAllowlist enterprise policy for testing.
	// Expects the allowlist to be empty before updating it.
	void AllowHttpForHostnamesForTesting(const std::vector<std::string>& hostnames,
	PrefService* prefs);

	// Clears HttpAllowlist enterprise policy for testing.
	void ClearHttpAllowlistForHostnamesForTesting(PrefService* prefs);

	// Returns true if the HTTPS-First Mode interstitial is enabled globally by the
	// UI pref or for this site through Site Engagement heuristic.
	bool IsInterstitialEnabled(
	const security_interstitials::https_only_mode::HttpInterstitialState&
	state);

	// An instance of this class adds `hostnames` to the HttpAllowlist enterprise
	// policy for testing and clears the allowlist when it goes out of scope.
	class ScopedAllowHttpForHostnamesForTesting {
	STACK_ALLOCATED();

	public:
	explicit ScopedAllowHttpForHostnamesForTesting(
	const std::vector<std::string>& hostnames,
	PrefService* prefs);
	ScopedAllowHttpForHostnamesForTesting(
	const ScopedAllowHttpForHostnamesForTesting&) = delete;
	ScopedAllowHttpForHostnamesForTesting& operator=(
	const ScopedAllowHttpForHostnamesForTesting&) = delete;

	~ScopedAllowHttpForHostnamesForTesting();

	private:
	raw_ptr<PrefService> prefs_;
	};

	#endif // CHROME_BROWSER_SSL_HTTPS_UPGRADES_UTIL_H_