extensions/common/extension_features.cc - chromium/src - Git at Google

 // Copyright 2017 The Chromium Authors
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "extensions/common/extension_features.h"
 #include "base/feature_list.h"

 namespace extensions_features {

 // Controls whether we show an install friction dialog when an Enhanced Safe
 // Browsing user tries to install an extension that is not included in the
 // Safe Browsing CRX allowlist. This feature also controls if we show a warning
 // in 'chrome://extensions' for extensions not included in the allowlist.
 BASE_FEATURE(kSafeBrowsingCrxAllowlistShowWarnings,
              "SafeBrowsingCrxAllowlistShowWarnings",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Automatically disable extensions not included in the Safe Browsing CRX
 // allowlist if the user has turned on Enhanced Safe Browsing (ESB). The
 // extensions can be disabled at ESB opt-in time or when an extension is moved
 // out of the allowlist.
 BASE_FEATURE(kSafeBrowsingCrxAllowlistAutoDisable,
              "SafeBrowsingCrxAllowlistAutoDisable",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // Forces requests to go through WebRequestProxyingURLLoaderFactory.
 BASE_FEATURE(kForceWebRequestProxyForTest,
              "ForceWebRequestProxyForTest",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // Enables the UI in the install prompt which lets a user choose to withhold
 // requested host permissions by default.
 BASE_FEATURE(kAllowWithholdingExtensionPermissionsOnInstall,
              "AllowWithholdingExtensionPermissionsOnInstall",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // Enables support for the "match_origin_as_fallback" property in content
 // scripts.
 BASE_FEATURE(kContentScriptsMatchOriginAsFallback,
              "ContentScriptsMatchOriginAsFallback",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Reports Extensions.WebRequest.KeepaliveRequestFinished when enabled.
 BASE_FEATURE(kReportKeepaliveUkm,
              "ReportKeepaliveUkm",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Whether extension contexts can use SharedArrayBuffers unconditionally (i.e.
 // without requiring cross origin isolation).
 // TODO(crbug.com/1184892): Flip this in M95.
 BASE_FEATURE(kAllowSharedArrayBuffersUnconditionally,
              "AllowSharedArrayBuffersUnconditionally",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // When enabled, causes Manifest V3 (and greater) extensions to use structured
 // cloning (instead of JSON serialization) for extension messaging, except when
 // communicating with native messaging hosts.
 BASE_FEATURE(kStructuredCloningForMV3Messaging,
              "StructuredCloningForMV3Messaging",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // When enabled, causes extensions to allow access to certain APIs only if the
 // user is in the developer mode.
 BASE_FEATURE(kRestrictDeveloperModeAPIs,
              "RestrictDeveloperModeAPIs",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // When enabled, then bad_message::ReceivedBadMessage will be called when
 // browser receives an IPC from a content script and the IPC that unexpectedly
 // claims to act on behalf of a given extension id, (i.e. even if the browser
 // process things that renderer process never run content scripts from the
 // extension).
 BASE_FEATURE(kCheckingNoExtensionIdInExtensionIpcs,
              "EMF_NO_EXTENSION_ID_FOR_EXTENSION_SOURCE",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Controls whether extensions can use the new favicon fetching in Manifest V3.
 BASE_FEATURE(kNewExtensionFaviconHandling,
              "ExtensionsNewFaviconHandling",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Determine if dynamic extension URLs are handled and redirected.
 BASE_FEATURE(kExtensionDynamicURLRedirection,
              "kExtensionDynamicURLRedirection",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // Enables enhanced site control for extensions and allowing the user to control
 // site permissions.
 BASE_FEATURE(kExtensionsMenuAccessControl,
              "ExtensionsMenuAccessControl",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // If enabled, calls RenderFrame::SetAllowsCrossBrowsingInstanceFrameLookup() in
 // DidCreateScriptContext() instead of DidCommitProvisionalLoad() to avoid
 // creating the script context too early which can be bad for performance.
 BASE_FEATURE(kAvoidEarlyExtensionScriptContextCreation,
              "AvoidEarlyExtensionScriptContextCreation",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // The feature enabling offscreen documents in Manifest V3 extensions.
 BASE_FEATURE(kExtensionsOffscreenDocuments,
              "ExtensionsOffscreenDocuments",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // If enabled, allows APIs used by the webstore to be exposed on the URL for the
 // new webstore.
 BASE_FEATURE(kNewWebstoreDomain,
              "NewWebstoreDomain",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Side panel API availability.
 BASE_FEATURE(kExtensionSidePanelIntegration,
              "ExtensionSidePanelIntegration",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // File Handlers.
 BASE_FEATURE(kFileHandlersMV3,
              "FileHandlersMV3",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // IsValidSourceUrl enforcement for ExtensionHostMsg_OpenChannelToExtension IPC.
 BASE_FEATURE(kExtensionSourceUrlEnforcement,
              "ExtensionSourceUrlEnforcement",
              base::FEATURE_ENABLED_BY_DEFAULT);

 // Controls the <webview> tag behaviour changes proposed as part of the guest
 // view MPArch migration. See
 // https://docs.google.com/document/d/1RVbtvklXUg9QCNvMT0r-1qDwJNeQFGoTCOD1Ur9mDa4/edit?usp=sharing
 // for details.
 BASE_FEATURE(kWebviewTagMPArchBehavior,
              "WebviewTagMPArchBehavior",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // If enabled, only manifest v3 extensions is allowed while v2 will be disabled.
 // Note that this feature is now only checked by `ExtensionManagement` which
 // represents enterprise extension configurations. Flip the feature will block
 // mv2 extension by default but the error messages will improperly mention
 // enterprise policy.
 BASE_FEATURE(kExtensionsManifestV3Only,
              "kExtensionsManifestV3Only",
              base::FEATURE_DISABLED_BY_DEFAULT);

 // If enabled, the minimum MV3 Content-Security-Policy will include
 // 'inline-speculation-rules' source in the script-src.
 // See https://crbug.com/1382361 to track the launch status.
 BASE_FEATURE(kMinimumMV3CSPWithInlineSpeculationRules,
              "MinimumMV3CSPWithInlineSpeculationRules",
              base::FEATURE_ENABLED_BY_DEFAULT);

 }  // namespace extensions_features
	// Copyright 2017 The Chromium Authors
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "extensions/common/extension_features.h"
	#include "base/feature_list.h"

	namespace extensions_features {

	// Controls whether we show an install friction dialog when an Enhanced Safe
	// Browsing user tries to install an extension that is not included in the
	// Safe Browsing CRX allowlist. This feature also controls if we show a warning
	// in 'chrome://extensions' for extensions not included in the allowlist.
	BASE_FEATURE(kSafeBrowsingCrxAllowlistShowWarnings,
	"SafeBrowsingCrxAllowlistShowWarnings",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Automatically disable extensions not included in the Safe Browsing CRX
	// allowlist if the user has turned on Enhanced Safe Browsing (ESB). The
	// extensions can be disabled at ESB opt-in time or when an extension is moved
	// out of the allowlist.
	BASE_FEATURE(kSafeBrowsingCrxAllowlistAutoDisable,
	"SafeBrowsingCrxAllowlistAutoDisable",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// Forces requests to go through WebRequestProxyingURLLoaderFactory.
	BASE_FEATURE(kForceWebRequestProxyForTest,
	"ForceWebRequestProxyForTest",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// Enables the UI in the install prompt which lets a user choose to withhold
	// requested host permissions by default.
	BASE_FEATURE(kAllowWithholdingExtensionPermissionsOnInstall,
	"AllowWithholdingExtensionPermissionsOnInstall",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// Enables support for the "match_origin_as_fallback" property in content
	// scripts.
	BASE_FEATURE(kContentScriptsMatchOriginAsFallback,
	"ContentScriptsMatchOriginAsFallback",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Reports Extensions.WebRequest.KeepaliveRequestFinished when enabled.
	BASE_FEATURE(kReportKeepaliveUkm,
	"ReportKeepaliveUkm",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Whether extension contexts can use SharedArrayBuffers unconditionally (i.e.
	// without requiring cross origin isolation).
	// TODO(crbug.com/1184892): Flip this in M95.
	BASE_FEATURE(kAllowSharedArrayBuffersUnconditionally,
	"AllowSharedArrayBuffersUnconditionally",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// When enabled, causes Manifest V3 (and greater) extensions to use structured
	// cloning (instead of JSON serialization) for extension messaging, except when
	// communicating with native messaging hosts.
	BASE_FEATURE(kStructuredCloningForMV3Messaging,
	"StructuredCloningForMV3Messaging",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// When enabled, causes extensions to allow access to certain APIs only if the
	// user is in the developer mode.
	BASE_FEATURE(kRestrictDeveloperModeAPIs,
	"RestrictDeveloperModeAPIs",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// When enabled, then bad_message::ReceivedBadMessage will be called when
	// browser receives an IPC from a content script and the IPC that unexpectedly
	// claims to act on behalf of a given extension id, (i.e. even if the browser
	// process things that renderer process never run content scripts from the
	// extension).
	BASE_FEATURE(kCheckingNoExtensionIdInExtensionIpcs,
	"EMF_NO_EXTENSION_ID_FOR_EXTENSION_SOURCE",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Controls whether extensions can use the new favicon fetching in Manifest V3.
	BASE_FEATURE(kNewExtensionFaviconHandling,
	"ExtensionsNewFaviconHandling",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Determine if dynamic extension URLs are handled and redirected.
	BASE_FEATURE(kExtensionDynamicURLRedirection,
	"kExtensionDynamicURLRedirection",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// Enables enhanced site control for extensions and allowing the user to control
	// site permissions.
	BASE_FEATURE(kExtensionsMenuAccessControl,
	"ExtensionsMenuAccessControl",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// If enabled, calls RenderFrame::SetAllowsCrossBrowsingInstanceFrameLookup() in
	// DidCreateScriptContext() instead of DidCommitProvisionalLoad() to avoid
	// creating the script context too early which can be bad for performance.
	BASE_FEATURE(kAvoidEarlyExtensionScriptContextCreation,
	"AvoidEarlyExtensionScriptContextCreation",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// The feature enabling offscreen documents in Manifest V3 extensions.
	BASE_FEATURE(kExtensionsOffscreenDocuments,
	"ExtensionsOffscreenDocuments",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// If enabled, allows APIs used by the webstore to be exposed on the URL for the
	// new webstore.
	BASE_FEATURE(kNewWebstoreDomain,
	"NewWebstoreDomain",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Side panel API availability.
	BASE_FEATURE(kExtensionSidePanelIntegration,
	"ExtensionSidePanelIntegration",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// File Handlers.
	BASE_FEATURE(kFileHandlersMV3,
	"FileHandlersMV3",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// IsValidSourceUrl enforcement for ExtensionHostMsg_OpenChannelToExtension IPC.
	BASE_FEATURE(kExtensionSourceUrlEnforcement,
	"ExtensionSourceUrlEnforcement",
	base::FEATURE_ENABLED_BY_DEFAULT);

	// Controls the <webview> tag behaviour changes proposed as part of the guest
	// view MPArch migration. See
	// https://docs.google.com/document/d/1RVbtvklXUg9QCNvMT0r-1qDwJNeQFGoTCOD1Ur9mDa4/edit?usp=sharing
	// for details.
	BASE_FEATURE(kWebviewTagMPArchBehavior,
	"WebviewTagMPArchBehavior",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// If enabled, only manifest v3 extensions is allowed while v2 will be disabled.
	// Note that this feature is now only checked by `ExtensionManagement` which
	// represents enterprise extension configurations. Flip the feature will block
	// mv2 extension by default but the error messages will improperly mention
	// enterprise policy.
	BASE_FEATURE(kExtensionsManifestV3Only,
	"kExtensionsManifestV3Only",
	base::FEATURE_DISABLED_BY_DEFAULT);

	// If enabled, the minimum MV3 Content-Security-Policy will include
	// 'inline-speculation-rules' source in the script-src.
	// See https://crbug.com/1382361 to track the launch status.
	BASE_FEATURE(kMinimumMV3CSPWithInlineSpeculationRules,
	"MinimumMV3CSPWithInlineSpeculationRules",
	base::FEATURE_ENABLED_BY_DEFAULT);

	} // namespace extensions_features