[WIP] WebRestrictions

android_webview/browser/aw_browser_context.cc

Index: android_webview/browser/aw_browser_context.cc
diff --git a/android_webview/browser/aw_browser_context.cc b/android_webview/browser/aw_browser_context.cc
index 8cf20eaec7b46b5dd7e209e87ef558289a8ad9b4..a7bc194111842805605bc621ec5ecd41fd213928 100644
--- a/android_webview/browser/aw_browser_context.cc
+++ b/android_webview/browser/aw_browser_context.cc
@@ -265,6 +265,10 @@ void AwBrowserContext::PreMainMessageLoopRun() {
   AwMetricsServiceClient::GetInstance()->Initialize(user_pref_service_.get(),
                                                     GetRequestContext(),
                                                     guid_file_path);
+  web_restriction_provider_.reset(
+      new web_restriction::ContentResolverWebRestrictionProvider());
+  web_restriction_provider_->Initialize(
+      "com.google.android.apps.chrome.SupervisedUserProvider");

[aberent, 2016/01/21 12:00:43]

I think this should be read from a policy (app restriction), since we may want
to disable this, or (for enterprise usage) use something other than Chrome as
the source of this. Probably needs to be confirmed with the Unicorn team, since
we then have to make sure that the policy is set correctly for all WebView apps.

[knn, 2016/01/21 12:17:22]

I was thinking maybe we could override it from policy to make the unicorn case
easier to support but what you said is definitely cleaner.

 }
 
 void AwBrowserContext::PostMainMessageLoopRun() {
@@ -459,6 +463,12 @@ policy::URLBlacklistManager* AwBrowserContext::GetURLBlacklistManager() {
   return blacklist_manager_.get();
 }
 
+web_restriction::ContentResolverWebRestrictionProvider*
+AwBrowserContext::GetWebRestrictionProvider() {
+  DCHECK(web_restriction_provider_);
+  return web_restriction_provider_.get();
+}
+
 void AwBrowserContext::RebuildTable(
     const scoped_refptr<URLEnumerator>& enumerator) {
   // Android WebView rebuilds from WebChromeClient.getVisitedHistory. The client