content/browser/web_exposed_isolation_info.h - chromium/src - Git at Google

 // Copyright 2020 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef CONTENT_BROWSER_WEB_EXPOSED_ISOLATION_INFO_H_
 #define CONTENT_BROWSER_WEB_EXPOSED_ISOLATION_INFO_H_

 #include "content/common/content_export.h"
 #include "third_party/abseil-cpp/absl/types/optional.h"
 #include "url/origin.h"

 namespace content {

 // Represents the isolation level of a page or group of pages. This is used
 // for process allocation and to selectively enable powerful features such
 // as SharedArrayBuffer and Direct Sockets.
 //
 // Currently, three levels of isolation are represented:
 //
 // 1.  Non-isolated contexts.
 //
 // 2.  Cross-origin isolation, as defined in
 //     https://html.spec.whatwg.org/#concept-settings-object-cross-origin-isolated-capability.
 //     This is computed purely by examining Cross-Origin-Opener-Policy and
 //     Cross-Origin-Embedder-Policy headers on a given response.
 //
 // 3.  Isolated Application contexts, whose requirements are still being
 //     fleshed out.
 //
 // TODO(mkwst): Improve the description of the Isolated Application context as
 // we work out what it is: https://crbug.com/1206150.
 class CONTENT_EXPORT WebExposedIsolationInfo {
  public:
   static WebExposedIsolationInfo CreateNonIsolated();
   static WebExposedIsolationInfo CreateIsolated(const url::Origin& origin);
   static WebExposedIsolationInfo CreateIsolatedApplication(
       const url::Origin& origin);

   WebExposedIsolationInfo(const WebExposedIsolationInfo& other);
   ~WebExposedIsolationInfo();

   // Returns `true` for isolated contexts created via `CreateIsolated()` or
   // `CreateIsolatedApplication()`, and false for contexts created via
   // `CreateNonIsolated()`.
   //
   // This corresponds to "cross-origin isolation" as defined in HTML:
   // https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-cross-origin-isolated-capability
   bool is_isolated() const { return origin_.has_value(); }

   // Returns `true` for contexts created via `CreateIsolatedApplication()`, and
   // `false` for those created via `CreateNonIsolated()` or `CreatedIsolated()`.
   //
   // This corresponds to "application isolation", which is not yet defined, but
   // will certainly include a superset of "cross-origin isolation"'s
   // requirements.
   //
   // TODO(crbug.com/1206150): Define and specify these restrictions.
   bool is_isolated_application() const {
     return origin_.has_value() && isolated_application_;
   }

   // Returns the top level origin shared across pages with this cross-origin
   // isolation status. This only returns a value if is_isolated is true.
   const url::Origin& origin() const;

   bool operator==(const WebExposedIsolationInfo& b) const;
   bool operator!=(const WebExposedIsolationInfo& b) const;

   // Non-isolated < Isolated < Isolated Application.
   //
   // All non-isolated contexts are equivalent.
   //
   // Origin comparisons determine ordering of isolated contexts.
   bool operator<(const WebExposedIsolationInfo& b) const;

  private:
   WebExposedIsolationInfo(const absl::optional<url::Origin>& origin,
                           bool isolated_application);

   // |origin_| serve two purposes. If null, it indicates that the page(s) it
   // refers to are not isolated, and that the crossOriginIsolated boolean is
   // false. If it has a value, all these page(s) share the same top level
   // origin. This ensure we can put them in the same process.
   absl::optional<url::Origin> origin_;

   // Some applications may require additional isolation above and beyond what
   // COOP/COEP-based COI provides. This boolean will be `true` for applications
   // that have opted into such a context.
   //
   // TODO(mkwst): Improve the description of the Isolated Application context as
   // we work out what it is: https://crbug.com/1206150.
   bool isolated_application_ = false;
 };

 CONTENT_EXPORT std::ostream& operator<<(std::ostream& out,
                                         const WebExposedIsolationInfo& info);
 }  // namespace content

 #endif  // CONTENT_BROWSER_WEB_EXPOSED_ISOLATION_INFO_H_
	// Copyright 2020 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef CONTENT_BROWSER_WEB_EXPOSED_ISOLATION_INFO_H_
	#define CONTENT_BROWSER_WEB_EXPOSED_ISOLATION_INFO_H_

	#include "content/common/content_export.h"
	#include "third_party/abseil-cpp/absl/types/optional.h"
	#include "url/origin.h"

	namespace content {

	// Represents the isolation level of a page or group of pages. This is used
	// for process allocation and to selectively enable powerful features such
	// as SharedArrayBuffer and Direct Sockets.
	//
	// Currently, three levels of isolation are represented:
	//
	// 1. Non-isolated contexts.
	//
	// 2. Cross-origin isolation, as defined in
	// https://html.spec.whatwg.org/#concept-settings-object-cross-origin-isolated-capability.
	// This is computed purely by examining Cross-Origin-Opener-Policy and
	// Cross-Origin-Embedder-Policy headers on a given response.
	//
	// 3. Isolated Application contexts, whose requirements are still being
	// fleshed out.
	//
	// TODO(mkwst): Improve the description of the Isolated Application context as
	// we work out what it is: https://crbug.com/1206150.
	class CONTENT_EXPORT WebExposedIsolationInfo {
	public:
	static WebExposedIsolationInfo CreateNonIsolated();
	static WebExposedIsolationInfo CreateIsolated(const url::Origin& origin);
	static WebExposedIsolationInfo CreateIsolatedApplication(
	const url::Origin& origin);

	WebExposedIsolationInfo(const WebExposedIsolationInfo& other);
	~WebExposedIsolationInfo();

	// Returns `true` for isolated contexts created via `CreateIsolated()` or
	// `CreateIsolatedApplication()`, and false for contexts created via
	// `CreateNonIsolated()`.
	//
	// This corresponds to "cross-origin isolation" as defined in HTML:
	// https://html.spec.whatwg.org/multipage/webappapis.html#concept-settings-object-cross-origin-isolated-capability
	bool is_isolated() const { return origin_.has_value(); }

	// Returns `true` for contexts created via `CreateIsolatedApplication()`, and
	// `false` for those created via `CreateNonIsolated()` or `CreatedIsolated()`.
	//
	// This corresponds to "application isolation", which is not yet defined, but
	// will certainly include a superset of "cross-origin isolation"'s
	// requirements.
	//
	// TODO(crbug.com/1206150): Define and specify these restrictions.
	bool is_isolated_application() const {
	return origin_.has_value() && isolated_application_;
	}

	// Returns the top level origin shared across pages with this cross-origin
	// isolation status. This only returns a value if is_isolated is true.
	const url::Origin& origin() const;

	bool operator==(const WebExposedIsolationInfo& b) const;
	bool operator!=(const WebExposedIsolationInfo& b) const;

	// Non-isolated < Isolated < Isolated Application.
	//
	// All non-isolated contexts are equivalent.
	//
	// Origin comparisons determine ordering of isolated contexts.
	bool operator<(const WebExposedIsolationInfo& b) const;

	private:
	WebExposedIsolationInfo(const absl::optional<url::Origin>& origin,
	bool isolated_application);

	// \|origin_\| serve two purposes. If null, it indicates that the page(s) it
	// refers to are not isolated, and that the crossOriginIsolated boolean is
	// false. If it has a value, all these page(s) share the same top level
	// origin. This ensure we can put them in the same process.
	absl::optional<url::Origin> origin_;

	// Some applications may require additional isolation above and beyond what
	// COOP/COEP-based COI provides. This boolean will be `true` for applications
	// that have opted into such a context.
	//
	// TODO(mkwst): Improve the description of the Isolated Application context as
	// we work out what it is: https://crbug.com/1206150.
	bool isolated_application_ = false;
	};

	CONTENT_EXPORT std::ostream& operator<<(std::ostream& out,
	const WebExposedIsolationInfo& info);
	} // namespace content

	#endif // CONTENT_BROWSER_WEB_EXPOSED_ISOLATION_INFO_H_