| Index: mojo/shell/public/interfaces/shell.mojom
|
| diff --git a/mojo/shell/public/interfaces/shell.mojom b/mojo/shell/public/interfaces/shell.mojom
|
| index ed3cbd02a4096fc7faa4e157c47b2cfd72472b8d..d7160ea2f6f8d3d75b02bf4b31c8f64bdbe2b5e2 100644
|
| --- a/mojo/shell/public/interfaces/shell.mojom
|
| +++ b/mojo/shell/public/interfaces/shell.mojom
|
| @@ -24,35 +24,61 @@ struct CapabilityFilter {
|
| // system and request connections to other applications.
|
| interface Shell {
|
| const uint32 kInvalidApplicationID = 0;
|
| + const uint32 kUserRoot = 0;
|
| + const uint32 kUserInherit = 1;
|
|
|
| - // Establishes a connection with another application ("target application")
|
| - // (located at |url|) through which the calling application and the
|
| - // target application may request services from one another.
|
| + // Requests a connection with another application. The application originating
|
| + // the request is referred to as the "source" and the one receiving the
|
| + // "target".
|
| //
|
| - // If the calling application would like to request services from the target
|
| - // application, it should pass a valid interface request in the |services|
|
| - // parameter (i.e. one containing a valid message pipe endpoint). If the
|
| - // target application does not wish to offer services, it may either not bind
|
| - // an implementation to the interface request, or else bind an implementation
|
| - // that will reject some or all service requests.
|
| + // The connection is embodied by a pair of message pipes binding the
|
| + // InterfaceProvider interface, which allows both the source and target
|
| + // applications to export interfaces to one another. The interfaces bound via
|
| + // these InterfaceProviders are brokered by the shell according to the
|
| + // security policy defined by each application in its manifest .
|
| //
|
| - // If the calling application would like to offer services to the target
|
| - // application, it should pass a bound interface through the
|
| - // |exposed_services| parameter. The target application may then request
|
| - // services through that interface.
|
| + // If the target application is not running, the shell will run it, calling
|
| + // its Initialize() method before completing the connection.
|
| //
|
| - // At least one of |services| or |exposed_services| should be valid/bound in
|
| - // the call.
|
| + // Parameters:
|
| //
|
| - // If the |application_url| does not contain a domain, but is of the form
|
| - // "mojo:{service}", it is up to the Mojo shell to select an appropriate
|
| - // application for the service. Currently, the shell does this based on the
|
| - // value of its --origin flag.
|
| + // url
|
| + // A mojo: or exe: URL identifying the target application.
|
| + //
|
| + // user_id
|
| + // The user id of the target application instance to connect to. If no such
|
| + // instance exists, the shell may start one. This user id will be passed
|
| + // to the new instance via Initialize(). Applications must generally set
|
| + // this to kUserInherit, and the shell will either connect to an existing
|
| + // instance matching the caller's user id, create a new instance matching
|
| + // the caller's user id, or connect to an existing instance running as
|
| + // kUserRoot. By default, applications do not have the ability to pass
|
| + // arbitrary values to this method, and doing so will result in a
|
| + // connection error on the remote service provider. An application with
|
| + // the ability to launch applications with arbitrary user ids (e.g. a login
|
| + // app) may set this value to something meaningful to it.
|
| + //
|
| + // remote_interfaces
|
| + // Allows the source application access to interface implementations
|
| + // exposed by the target application. The interfaces accessible via this
|
| + // InterfaceParameter are filtered by the security policy described by the
|
| + // source and target application manifests.
|
| + //
|
| + // local_interfaces
|
| + // Allows the remote application access to interface implementations
|
| + // exposed by the source application. The interfaces accessible via this
|
| + // InterfaceProvider are filtered by the security policy described by the
|
| + // source and target application manifests.
|
| + //
|
| + // filter
|
| + // Deprecated, to be removed.
|
| + //
|
| + // Response: (application_id)
|
| + // The shell responds with a unique identifier for the instance that was
|
| + // connected to.
|
| //
|
| - // |filter| is a whitelist of application URLs and services that the target
|
| - // application is permitted to connect to. See documentation for
|
| - // CapabilityFilter above.
|
| Connect(string url,
|
| + uint32 user_id,
|
| InterfaceProvider&? remote_interfaces,
|
| InterfaceProvider? local_interfaces,
|
| CapabilityFilter filter) => (uint32 application_id);
|
|
|
Chromium Code Reviews
Issue 1719193003:
Add a user id parameter to connections (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master