Adds a field trial to control Web API kill switches.

chrome/browser/permissions/permission_context_base.cc

 // Copyright 2014 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "chrome/browser/permissions/permission_context_base.h"
 
 #include "base/logging.h"
 #include "base/prefs/pref_service.h"
 #include "chrome/browser/content_settings/host_content_settings_map_factory.h"
 #include "chrome/browser/permissions/permission_bubble_request_impl.h"
 #include "chrome/browser/permissions/permission_context_uma_util.h"
 #include "chrome/browser/permissions/permission_queue_controller.h"
 #include "chrome/browser/permissions/permission_request_id.h"
 #include "chrome/browser/profiles/profile.h"
 #include "chrome/browser/ui/website_settings/permission_bubble_manager.h"
 #include "chrome/common/pref_names.h"
 #include "components/content_settings/core/browser/host_content_settings_map.h"
 #include "components/content_settings/core/browser/website_settings_registry.h"
+#include "components/variations/variations_associated_data.h"
 #include "content/public/browser/browser_thread.h"
 #include "content/public/browser/web_contents.h"
 #include "content/public/common/origin_util.h"
 

[Nathan Parker, 2015/10/09 00:38:37]

Put in an anonymous namespace, or make static

[kcarattini, 2015/10/09 01:35:52]

Done.

+// API kill switch Finch Trials
+const char kApiFieldStudy[] = "ApiKillSwitch";
+const char kApiFieldParamEnabledValue[] = "enabled";
+
 PermissionContextBase::PermissionContextBase(
     Profile* profile,
     const ContentSettingsType permission_type)
     : profile_(profile),
       permission_type_(permission_type),
       weak_factory_(this) {
   permission_queue_controller_.reset(
       new PermissionQueueController(profile_, permission_type_));
 }
 
 PermissionContextBase::~PermissionContextBase() {
   DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
 }
 
 void PermissionContextBase::RequestPermission(
     content::WebContents* web_contents,
     const PermissionRequestID& id,
     const GURL& requesting_frame,
     bool user_gesture,
     const BrowserPermissionCallback& callback) {
   DCHECK_CURRENTLY_ON(content::BrowserThread::UI);
 
+  // First check if this API has been disabled through Finch.
+  const std::string param =
+      variations::GetVariationParamValue(kApiFieldStudy,

[Nathan Parker, 2015/10/09 00:38:37]

Meta: We should document how to use this kill switch.  I'm imagining an
emergency a year from now and people not knowing that this thing exists or how
to use it.

[Nathan Parker, 2015/10/09 00:38:37]

Since you use this twice, I'd make a helper func (in the anon-namespace) like
IsApiKillSwitchOn(permission_type) or some such.

[kcarattini, 2015/10/09 01:35:52]

Acknowledged.

[kcarattini, 2015/10/09 01:35:52]

Done.

+          PermissionContextUmaUtil::GetPermissionString(permission_type_));
+
+  if (param == kApiFieldParamEnabledValue) {
+    // This kill switch is enabled for this API; Block all requests.
+    NotifyPermissionSet(id, requesting_frame.GetOrigin(),
+        web_contents->GetLastCommittedURL().GetOrigin(), callback,
+        false /* persist */, CONTENT_SETTING_BLOCK);
+    return;
+  }
+
   DecidePermission(web_contents,
                    id,
                    requesting_frame.GetOrigin(),
                    web_contents->GetLastCommittedURL().GetOrigin(),
                    user_gesture,
                    callback);
 }
 
 ContentSetting PermissionContextBase::GetPermissionStatus(
     const GURL& requesting_origin,
     const GURL& embedding_origin) const {
+
+  // First check if this API has been disabled through Finch.
+  const std::string param =
+      variations::GetVariationParamValue(kApiFieldStudy,
+          PermissionContextUmaUtil::GetPermissionString(permission_type_));
+
+  if (param == kApiFieldParamEnabledValue) {
+    // This kill switch is enabled for this API; Block all requests.
+    return CONTENT_SETTING_BLOCK;
+  }
+
   if (IsRestrictedToSecureOrigins() &&
       !content::IsOriginSecure(requesting_origin)) {
     return CONTENT_SETTING_BLOCK;
   }
 
   return HostContentSettingsMapFactory::GetForProfile(profile_)
       ->GetContentSetting(requesting_origin,
                           embedding_origin,
                           permission_type_,
                           std::string());
@@ skipping 183 matching lines @@
   DCHECK_EQ(requesting_origin, requesting_origin.GetOrigin());
   DCHECK_EQ(embedding_origin, embedding_origin.GetOrigin());
   DCHECK(content_setting == CONTENT_SETTING_ALLOW ||
          content_setting == CONTENT_SETTING_BLOCK);
 
   HostContentSettingsMapFactory::GetForProfile(profile_)->SetContentSetting(
       ContentSettingsPattern::FromURLNoWildcard(requesting_origin),
       ContentSettingsPattern::FromURLNoWildcard(embedding_origin),
       permission_type_, std::string(), content_setting);
 }