components/embedder_support/android/util/cdn_utils.cc - chromium/src - Git at Google

 // Copyright 2020 The Chromium Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "components/embedder_support/android/util/cdn_utils.h"

 #include "base/command_line.h"
 #include "base/feature_list.h"
 #include "base/no_destructor.h"
 #include "content/public/browser/page.h"
 #include "content/public/browser/render_frame_host.h"
 #include "net/http/http_response_headers.h"
 #include "services/network/public/mojom/url_response_head.mojom.h"
 #include "url/gurl.h"

 namespace embedder_support {

 namespace {

 constexpr char kDefaultTrustedCDNBaseURL[] = "https://cdn.ampproject.org";

 // Specifies a base URL for the trusted CDN for tests.
 const char kTrustedCDNBaseURLForTests[] = "trusted-cdn-base-url-for-tests";

 // Returns whether the given URL is hosted by a trusted CDN. The base URL to
 // trust can be overridden via a command line flag for testing.
 bool IsTrustedCDN(const GURL& url) {
   // Use a static local (without destructor) to construct the base URL only
   // once. |trusted_cdn_base_url| is initialized with the result of an
   // immediately evaluated lambda, which allows wrapping the code in a single
   // expression.
   static const base::NoDestructor<GURL> trusted_cdn_base_url([]() {
     const base::CommandLine* command_line =
         base::CommandLine::ForCurrentProcess();
     if (command_line->HasSwitch(kTrustedCDNBaseURLForTests)) {
       GURL base_url(
           command_line->GetSwitchValueASCII(kTrustedCDNBaseURLForTests));
       LOG_IF(WARNING, !base_url.is_valid()) << "Invalid trusted CDN base URL: "
                                             << base_url.possibly_invalid_spec();
       return base_url;
     }

     return GURL(kDefaultTrustedCDNBaseURL);
   }());

   // Allow any subdomain of the base URL.
   return url.DomainIs(trusted_cdn_base_url->host()) &&
          (url.scheme() == trusted_cdn_base_url->scheme()) &&
          (url.EffectiveIntPort() == trusted_cdn_base_url->EffectiveIntPort());
 }

 }  // namespace

 GURL GetPublisherURL(content::RenderFrameHost* rfh) {
   if (!rfh || !rfh->IsInPrimaryMainFrame() ||
       !IsTrustedCDN(rfh->GetLastCommittedURL())) {
     return GURL();
   }

   const network::mojom::URLResponseHead* response_head =
       rfh->GetLastResponseHead();
   if (!response_head || !response_head->headers) {
     // TODO(crbug.com/41381000): In some cases other than offline pages
     // we don't have headers.
     LOG(WARNING) << "No headers for navigation to "
                  << rfh->GetLastCommittedURL();
     return GURL();
   }

   std::optional<std::string> publisher_url =
       response_head->headers->GetNormalizedHeader("x-amp-cache");
   if (!publisher_url) {
     return GURL();
   }

   return GURL(*publisher_url);
 }

 }  // namespace embedder_support
	// Copyright 2020 The Chromium Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "components/embedder_support/android/util/cdn_utils.h"

	#include "base/command_line.h"
	#include "base/feature_list.h"
	#include "base/no_destructor.h"
	#include "content/public/browser/page.h"
	#include "content/public/browser/render_frame_host.h"
	#include "net/http/http_response_headers.h"
	#include "services/network/public/mojom/url_response_head.mojom.h"
	#include "url/gurl.h"

	namespace embedder_support {

	namespace {

	constexpr char kDefaultTrustedCDNBaseURL[] = "https://cdn.ampproject.org";

	// Specifies a base URL for the trusted CDN for tests.
	const char kTrustedCDNBaseURLForTests[] = "trusted-cdn-base-url-for-tests";

	// Returns whether the given URL is hosted by a trusted CDN. The base URL to
	// trust can be overridden via a command line flag for testing.
	bool IsTrustedCDN(const GURL& url) {
	// Use a static local (without destructor) to construct the base URL only
	// once. \|trusted_cdn_base_url\| is initialized with the result of an
	// immediately evaluated lambda, which allows wrapping the code in a single
	// expression.
	static const base::NoDestructor<GURL> trusted_cdn_base_url([]() {
	const base::CommandLine* command_line =
	base::CommandLine::ForCurrentProcess();
	if (command_line->HasSwitch(kTrustedCDNBaseURLForTests)) {
	GURL base_url(
	command_line->GetSwitchValueASCII(kTrustedCDNBaseURLForTests));
	LOG_IF(WARNING, !base_url.is_valid()) << "Invalid trusted CDN base URL: "
	<< base_url.possibly_invalid_spec();
	return base_url;
	}

	return GURL(kDefaultTrustedCDNBaseURL);
	}());

	// Allow any subdomain of the base URL.
	return url.DomainIs(trusted_cdn_base_url->host()) &&
	(url.scheme() == trusted_cdn_base_url->scheme()) &&
	(url.EffectiveIntPort() == trusted_cdn_base_url->EffectiveIntPort());
	}

	} // namespace

	GURL GetPublisherURL(content::RenderFrameHost* rfh) {
	if (!rfh \|\| !rfh->IsInPrimaryMainFrame() \|\|
	!IsTrustedCDN(rfh->GetLastCommittedURL())) {
	return GURL();
	}

	const network::mojom::URLResponseHead* response_head =
	rfh->GetLastResponseHead();
	if (!response_head \|\| !response_head->headers) {
	// TODO(crbug.com/41381000): In some cases other than offline pages
	// we don't have headers.
	LOG(WARNING) << "No headers for navigation to "
	<< rfh->GetLastCommittedURL();
	return GURL();
	}

	std::optional<std::string> publisher_url =
	response_head->headers->GetNormalizedHeader("x-amp-cache");
	if (!publisher_url) {
	return GURL();
	}

	return GURL(*publisher_url);
	}

	} // namespace embedder_support