| // Copyright 2024 The Chromium Authors |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| #include "chrome/browser/ash/floating_sso/floating_sso_service.h" |
| |
| #include <memory> |
| |
| #include "ash/constants/ash_features.h" |
| #include "ash/constants/ash_pref_names.h" |
| #include "base/functional/bind.h" |
| #include "base/functional/callback_helpers.h" |
| #include "base/values.h" |
| #include "base/version_info/channel.h" |
| #include "chrome/browser/ash/floating_sso/cookie_sync_conversions.h" |
| #include "chrome/browser/ash/floating_sso/floating_sso_sync_bridge.h" |
| #include "chrome/browser/ash/floating_workspace/floating_workspace_util.h" |
| #include "chrome/common/channel_info.h" |
| #include "chrome/common/pref_names.h" |
| #include "components/google/core/common/google_util.h" |
| #include "components/prefs/pref_change_registrar.h" |
| #include "components/prefs/pref_service.h" |
| #include "components/sync/base/pref_names.h" |
| #include "components/url_matcher/url_util.h" |
| #include "net/cookies/cookie_change_dispatcher.h" |
| #include "net/cookies/cookie_util.h" |
| |
| namespace ash::floating_sso { |
| |
| namespace { |
| |
| bool IsGoogleCookie(const net::CanonicalCookie& cookie) { |
| GURL cookie_domain_url = net::cookie_util::CookieOriginToURL( |
| cookie.Domain(), cookie.SecureAttribute()); |
| |
| return google_util::IsGoogleDomainUrl( |
| cookie_domain_url, google_util::ALLOW_SUBDOMAIN, |
| google_util::ALLOW_NON_STANDARD_PORTS) || |
| google_util::IsYoutubeDomainUrl(cookie_domain_url, |
| google_util::ALLOW_SUBDOMAIN, |
| google_util::ALLOW_NON_STANDARD_PORTS); |
| } |
| |
| } // namespace |
| |
| FloatingSsoService::FloatingSsoService( |
| PrefService* prefs, |
| std::unique_ptr<FloatingSsoSyncBridge> bridge, |
| network::mojom::CookieManager* cookie_manager) |
| : prefs_(prefs), |
| cookie_manager_(cookie_manager), |
| bridge_(std::move(bridge)), |
| pref_change_registrar_(std::make_unique<PrefChangeRegistrar>()) { |
| pref_change_registrar_->Init(prefs_); |
| RegisterPolicyListeners(); |
| UpdateUrlMatchers(); |
| StartOrStop(); |
| } |
| |
| FloatingSsoService::~FloatingSsoService() = default; |
| |
| void FloatingSsoService::Shutdown() { |
| pref_change_registrar_.reset(); |
| prefs_ = nullptr; |
| } |
| |
| void FloatingSsoService::RegisterPolicyListeners() { |
| pref_change_registrar_->Add( |
| ::prefs::kFloatingSsoEnabled, |
| base::BindRepeating(&FloatingSsoService::StartOrStop, |
| base::Unretained(this))); |
| pref_change_registrar_->Add( |
| syncer::prefs::internal::kSyncKeepEverythingSynced, |
| base::BindRepeating(&FloatingSsoService::StartOrStop, |
| base::Unretained(this))); |
| pref_change_registrar_->Add( |
| syncer::prefs::internal::kSyncCookies, |
| base::BindRepeating(&FloatingSsoService::StartOrStop, |
| base::Unretained(this))); |
| pref_change_registrar_->Add( |
| syncer::prefs::internal::kSyncManaged, |
| base::BindRepeating(&FloatingSsoService::StartOrStop, |
| base::Unretained(this))); |
| // Policy updates will only affect future updates of cookies, this means that |
| // cookies that already exist are not checked again to see if some of them are |
| // no longer blocklisted. |
| pref_change_registrar_->Add( |
| ::prefs::kFloatingSsoDomainBlocklist, |
| base::BindRepeating(&FloatingSsoService::UpdateUrlMatchers, |
| base::Unretained(this))); |
| pref_change_registrar_->Add( |
| ::prefs::kFloatingSsoDomainBlocklistExceptions, |
| base::BindRepeating(&FloatingSsoService::UpdateUrlMatchers, |
| base::Unretained(this))); |
| } |
| |
| void FloatingSsoService::UpdateUrlMatchers() { |
| // Reset URL matchers every time the policies change. |
| block_url_matcher_ = std::make_unique<url_matcher::URLMatcher>(); |
| except_url_matcher_ = std::make_unique<url_matcher::URLMatcher>(); |
| |
| const base::Value::List& blocklist = |
| prefs_->GetList(::prefs::kFloatingSsoDomainBlocklist); |
| const base::Value::List& blocklist_exceptions = |
| prefs_->GetList(::prefs::kFloatingSsoDomainBlocklistExceptions); |
| |
| if (!blocklist.empty()) { |
| base::MatcherStringPattern::ID block_id = 0; |
| url_matcher::util::AddFilters(block_url_matcher_.get(), /*allow=*/false, |
| &block_id, blocklist); |
| } |
| |
| if (!blocklist_exceptions.empty()) { |
| base::MatcherStringPattern::ID except_id = 0; |
| url_matcher::util::AddFilters(except_url_matcher_.get(), /*allow=*/true, |
| &except_id, blocklist_exceptions); |
| } |
| } |
| |
| void FloatingSsoService::StartOrStop() { |
| if (IsFloatingSsoEnabled()) { |
| if (!scoped_observation_.IsObserving()) { |
| scoped_observation_.Observe(bridge_.get()); |
| } |
| MaybeStartListening(); |
| } else { |
| scoped_observation_.Reset(); |
| StopListening(); |
| } |
| } |
| |
| bool FloatingSsoService::IsFloatingSsoEnabled() { |
| // The feature is restricted to Beta users for the initial testing |
| // period. Unknown channel is added to support test execution in CQ, |
| // where tests are run on non-branded builds. |
| version_info::Channel channel = chrome::GetChannel(); |
| if (channel != version_info::Channel::BETA && |
| channel != version_info::Channel::DEV && |
| channel != version_info::Channel::UNKNOWN) { |
| return false; |
| } |
| // Check FloatingSsoEnabled policy. |
| if (!prefs_->GetBoolean(::prefs::kFloatingSsoEnabled)) { |
| return false; |
| } |
| // Check SyncDisabled policy (it maps to kSyncManaged pref). |
| if (prefs_->GetBoolean(syncer::prefs::internal::kSyncManaged)) { |
| return false; |
| } |
| // Check that user either syncs everything or has selected cookies as one of |
| // synced types. |
| if (!prefs_->GetBoolean(syncer::prefs::internal::kSyncKeepEverythingSynced)) { |
| return prefs_->GetBoolean(syncer::prefs::internal::kSyncCookies); |
| } |
| return true; |
| } |
| |
| void FloatingSsoService::MaybeStartListening() { |
| if (!cookie_manager_) { |
| return; |
| } |
| |
| if (!receiver_.is_bound()) { |
| BindToCookieManager(); |
| } |
| } |
| |
| void FloatingSsoService::StopListening() { |
| if (receiver_.is_bound()) { |
| // In case cookie listening will resume in the same session, make sure the |
| // accumulated cookie list will be fetched. |
| fetch_accumulated_cookies_ = true; |
| receiver_.reset(); |
| } |
| } |
| |
| void FloatingSsoService::BindToCookieManager() { |
| cookie_manager_->AddGlobalChangeListener( |
| receiver_.BindNewPipeAndPassRemote()); |
| receiver_.set_disconnect_handler(base::BindOnce( |
| &FloatingSsoService::OnConnectionError, base::Unretained(this))); |
| |
| if (fetch_accumulated_cookies_) { |
| cookie_manager_->GetAllCookies(base::BindOnce( |
| &FloatingSsoService::OnCookiesLoaded, base::Unretained(this))); |
| } |
| } |
| |
| void FloatingSsoService::OnCookieChange(const net::CookieChangeInfo& change) { |
| const net::CanonicalCookie& cookie = change.cookie; |
| if (!ShouldSyncCookie(cookie)) { |
| return; |
| } |
| std::optional<sync_pb::CookieSpecifics> sync_specifics = ToSyncProto(cookie); |
| if (!sync_specifics.has_value()) { |
| return; |
| } |
| |
| const auto& in_store_specifics = bridge_->CookieSpecificsInStore(); |
| switch (change.cause) { |
| case net::CookieChangeCause::INSERTED: { |
| // Check if an identical cookie already exists in the bridge's store, |
| // to avoid sending no-op changes to sync. |
| if (auto it = in_store_specifics.find(sync_specifics->unique_key()); |
| it != in_store_specifics.end()) { |
| const sync_pb::CookieSpecifics& local_specifics = it->second; |
| std::unique_ptr<net::CanonicalCookie> in_store_cookie = |
| FromSyncProto(local_specifics); |
| if (in_store_cookie && |
| in_store_cookie->HasEquivalentDataMembers(cookie)) { |
| break; |
| } |
| } |
| bridge_->AddOrUpdateCookie(sync_specifics.value()); |
| break; |
| } |
| // All cases below correspond to deletion of a cookie. When intention is to |
| // update the cookie (e.g. in the case of `CookieChangeCause::OVERWRITE`), |
| // they will be immediately followed by a `CookieChangeCause::INSERTED` |
| // change. |
| case net::CookieChangeCause::EXPLICIT: |
| case net::CookieChangeCause::UNKNOWN_DELETION: |
| case net::CookieChangeCause::OVERWRITE: |
| case net::CookieChangeCause::EXPIRED: |
| case net::CookieChangeCause::EVICTED: |
| case net::CookieChangeCause::EXPIRED_OVERWRITE: |
| // Check if the key is present in the bridge's store, to avoid sending |
| // no-op changes to sync. |
| if (auto it = in_store_specifics.find(sync_specifics->unique_key()); |
| it != in_store_specifics.end()) { |
| bridge_->DeleteCookie(sync_specifics.value().unique_key()); |
| } |
| break; |
| } |
| } |
| |
| void FloatingSsoService::OnCookiesAddedOrUpdatedRemotely( |
| const std::vector<net::CanonicalCookie>& cookies) { |
| net::CookieOptions options; |
| // Allow to alter http_only and SameSite cookies since we are restoring this |
| // cookie from another Chrome session. |
| options.set_include_httponly(); |
| options.set_same_site_cookie_context( |
| net::CookieOptions::SameSiteCookieContext::MakeInclusive()); |
| for (const net::CanonicalCookie& cookie : cookies) { |
| // Sync server might contain changes for cookies which should no longer be |
| // synced due to a change of policies or a change in feature design and |
| // implementation. In that case, ignore them on the client side and let |
| // corresponding sync entities die on the server side based on TTL . |
| if (!ShouldSyncCookie(cookie)) { |
| continue; |
| } |
| cookie_manager_->SetCanonicalCookie( |
| cookie, net::cookie_util::SimulatedCookieSource(cookie, "https"), |
| options, base::DoNothing()); |
| } |
| } |
| |
| void FloatingSsoService::OnCookiesRemovedRemotely( |
| const std::vector<net::CanonicalCookie>& cookies) { |
| for (const net::CanonicalCookie& cookie : cookies) { |
| // Sync server might contain changes for cookies which should no longer be |
| // synced due to a change of policies or a change in feature design and |
| // implementation. In that case, ignore them on the client side. |
| if (!ShouldSyncCookie(cookie)) { |
| continue; |
| } |
| |
| cookie_manager_->DeleteCanonicalCookie(cookie, base::DoNothing()); |
| } |
| } |
| |
| void FloatingSsoService::OnCookiesLoaded(const net::CookieList& cookies) { |
| for (const net::CanonicalCookie& cookie : cookies) { |
| if (!ShouldSyncCookie(cookie)) { |
| continue; |
| } |
| std::optional<sync_pb::CookieSpecifics> sync_specifics = |
| ToSyncProto(cookie); |
| if (!sync_specifics.has_value()) { |
| continue; |
| } |
| bridge_->AddOrUpdateCookie(sync_specifics.value()); |
| } |
| } |
| |
| bool FloatingSsoService::ShouldSyncCookie( |
| const net::CanonicalCookie& cookie) const { |
| // Filter out session cookies (except when Floating Workspace is enabled). |
| if (!cookie.IsPersistent() && |
| !ash::floating_workspace_util::IsFloatingWorkspaceV2Enabled()) { |
| return false; |
| } |
| |
| // Filter out Google cookies. |
| if (IsGoogleCookie(cookie)) { |
| return false; |
| } |
| |
| // Filter out policy-blocked URLs. |
| if (!IsDomainAllowed(cookie)) { |
| return false; |
| } |
| |
| return true; |
| } |
| |
| bool FloatingSsoService::IsDomainAllowed( |
| const net::CanonicalCookie& cookie) const { |
| GURL cookie_domain_url = net::cookie_util::CookieOriginToURL( |
| cookie.Domain(), cookie.SecureAttribute()); |
| bool is_excepted = !except_url_matcher_->MatchURL(cookie_domain_url).empty(); |
| |
| // Exception list takes precedence. |
| if (is_excepted) { |
| return true; |
| } |
| |
| // The domain is not blocked if it doesn't have matches in the blocklist. |
| return block_url_matcher_->MatchURL(cookie_domain_url).empty(); |
| } |
| |
| void FloatingSsoService::OnConnectionError() { |
| // Don't fetch the accumulated cookies because we will try to reconnect right |
| // away. |
| fetch_accumulated_cookies_ = false; |
| receiver_.reset(); |
| MaybeStartListening(); |
| } |
| |
| base::WeakPtr<syncer::DataTypeControllerDelegate> |
| FloatingSsoService::GetControllerDelegate() { |
| return bridge_->change_processor()->GetControllerDelegate(); |
| } |
| |
| } // namespace ash::floating_sso |
