| Index: chrome/common/extensions/extension.cc
|
| diff --git a/chrome/common/extensions/extension.cc b/chrome/common/extensions/extension.cc
|
| index dd5a44a896dd137fb2271033580eb4a8b8aa6962..a4cbc8dad558a1c9c14f8fb3e51105d8241eae87 100644
|
| --- a/chrome/common/extensions/extension.cc
|
| +++ b/chrome/common/extensions/extension.cc
|
| @@ -364,6 +364,8 @@ Extension::Type Extension::GetType() const {
|
| return TYPE_THEME;
|
| if (converted_from_user_script())
|
| return TYPE_USER_SCRIPT;
|
| + if (is_platform_app())
|
| + return TYPE_PLATFORM_APP;
|
| if (is_hosted_app())
|
| return TYPE_HOSTED_APP;
|
| if (is_packaged_app())
|
| @@ -2854,29 +2856,43 @@ bool Extension::CanSpecifyAPIPermission(
|
| }
|
| }
|
|
|
| - if (is_hosted_app()) {
|
| - if (!CanSpecifyPermissionForHostedApp(permission)) {
|
| - // Some old versions of Chrome did not return errors here and we ended up
|
| - // with extensions in the store containing bad data: crbug.com/101993.
|
| - //
|
| - // TODO(aa): Consider just being a lot looser when loading and installing
|
| - // extensions. We can be strict when packing and in development mode. Then
|
| - // we won't have to maintain all these tricky backward compat issues:
|
| - // crbug.com/102328.
|
| - if (creation_flags_ & STRICT_ERROR_CHECKS) {
|
| - *error = ExtensionErrorUtils::FormatErrorMessage(
|
| - errors::kPermissionNotAllowed, permission->name());
|
| - }
|
| - return false;
|
| - }
|
| + if (location_ == Extension::COMPONENT)
|
| + return true;
|
| +
|
| + bool supports_type = false;
|
| + switch (GetType()) {
|
| + case TYPE_USER_SCRIPT: // Pass through.
|
| + case TYPE_EXTENSION:
|
| + supports_type = permission->supports_extensions();
|
| + break;
|
| + case TYPE_HOSTED_APP:
|
| + supports_type = permission->supports_hosted_apps();
|
| + break;
|
| + case TYPE_PACKAGED_APP:
|
| + supports_type = permission->supports_packaged_apps();
|
| + break;
|
| + case TYPE_PLATFORM_APP:
|
| + supports_type = permission->supports_platform_apps();
|
| + break;
|
| + default:
|
| + supports_type = false;
|
| + break;
|
| }
|
|
|
| - if (permission->is_platform_app_only()) {
|
| - if (!is_platform_app()) {
|
| + if (!supports_type) {
|
| + // We special case hosted apps because some old versions of Chrome did not
|
| + // return errors here and we ended up with extensions in the store
|
| + // containing bad data: crbug.com/101993.
|
| + //
|
| + // TODO(aa): Consider just being a lot looser when loading and installing
|
| + // extensions. We can be strict when packing and in development mode. Then
|
| + // we won't have to maintain all these tricky backward compat issues:
|
| + // crbug.com/102328.
|
| + if (!is_hosted_app() || creation_flags_ & STRICT_ERROR_CHECKS) {
|
| *error = ExtensionErrorUtils::FormatErrorMessage(
|
| errors::kPermissionNotAllowed, permission->name());
|
| - return false;
|
| }
|
| + return false;
|
| }
|
|
|
| return true;
|
| @@ -2917,17 +2933,6 @@ bool Extension::CanSpecifyExperimentalPermission() const {
|
| return false;
|
| }
|
|
|
| -bool Extension::CanSpecifyPermissionForHostedApp(
|
| - const ExtensionAPIPermission* permission) const {
|
| - if (location_ == Extension::COMPONENT)
|
| - return true;
|
| -
|
| - if (permission->is_hosted_app())
|
| - return true;
|
| -
|
| - return false;
|
| -}
|
| -
|
| bool Extension::CanExecuteScriptEverywhere() const {
|
| if (location() == Extension::COMPONENT
|
| #ifndef NDEBUG
|
|
|
Chromium Code Reviews
Issue 8598022:
Restrict access to permissions based on extension types. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src