Chromium Code Reviews Chromium Code Reviews
Issue 2004043002:
Supervised Users Initiated Installs v2 (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@kid_initiated_install| Index: chrome/browser/supervised_user/supervised_user_service.cc |
| diff --git a/chrome/browser/supervised_user/supervised_user_service.cc b/chrome/browser/supervised_user/supervised_user_service.cc |
| index 0f71827875aeaaebb3c71482ecd4956c8741e3f2..1be68616e1729c0a8c285b03ad7f44edb807ff77 100644 |
| --- a/chrome/browser/supervised_user/supervised_user_service.cc |
| +++ b/chrome/browser/supervised_user/supervised_user_service.cc |
| @@ -7,6 +7,7 @@ |
| #include <utility> |
| #include "base/command_line.h" |
| +#include "base/feature_list.h" |
| #include "base/files/file_path.h" |
| #include "base/files/file_util.h" |
| #include "base/memory/ref_counted.h" |
| @@ -27,6 +28,7 @@ |
| #include "chrome/browser/supervised_user/experimental/supervised_user_filtering_switches.h" |
| #include "chrome/browser/supervised_user/permission_request_creator.h" |
| #include "chrome/browser/supervised_user/supervised_user_constants.h" |
| +#include "chrome/browser/supervised_user/supervised_user_features.h" |
| #include "chrome/browser/supervised_user/supervised_user_service_observer.h" |
| #include "chrome/browser/supervised_user/supervised_user_settings_service.h" |
| #include "chrome/browser/supervised_user/supervised_user_settings_service_factory.h" |
| @@ -68,6 +70,8 @@ |
| #if defined(ENABLE_EXTENSIONS) |
| #include "chrome/browser/extensions/extension_service.h" |
| +#include "chrome/browser/supervised_user/supervised_user_service_factory.h" |
| +#include "extensions/browser/extension_prefs.h" |
| #include "extensions/browser/extension_system.h" |
| #endif |
| @@ -106,6 +110,13 @@ void CreateURLAccessRequest( |
| creator->CreateURLAccessRequest(url, callback); |
| } |
| +void CreateExtensionInstallRequest( |
| + const std::string& id, |
| + PermissionRequestCreator* creator, |
| + const SupervisedUserService::SuccessCallback& callback) { |
| + creator->CreateExtensionInstallRequest(id, callback); |
| +} |
| + |
| void CreateExtensionUpdateRequest( |
| const std::string& id, |
| PermissionRequestCreator* creator, |
| @@ -113,6 +124,11 @@ void CreateExtensionUpdateRequest( |
| creator->CreateExtensionUpdateRequest(id, callback); |
| } |
| +// Default callback for AddExtensionInstallRequest. |
| +void ExtensionInstallRequestSent(const std::string& id, bool success) { |
| + VLOG_IF(1, !success) << "Failed sending install request for " << id; |
| +} |
| + |
| // Default callback for AddExtensionUpdateRequest. |
| void ExtensionUpdateRequestSent(const std::string& id, bool success) { |
| VLOG_IF(1, !success) << "Failed sending update request for " << id; |
| @@ -123,46 +139,6 @@ base::FilePath GetBlacklistPath() { |
| PathService::Get(chrome::DIR_USER_DATA, &blacklist_dir); |
| return blacklist_dir.AppendASCII(kBlacklistFilename); |
| } |
| - |
| -#if defined(ENABLE_EXTENSIONS) |
| -enum ExtensionState { |
| - EXTENSION_FORCED, |
| - EXTENSION_BLOCKED, |
| - EXTENSION_ALLOWED |
| -}; |
| - |
| -ExtensionState GetExtensionState(const extensions::Extension* extension) { |
| - bool was_installed_by_default = extension->was_installed_by_default(); |
| -#if defined(OS_CHROMEOS) |
| - // On Chrome OS all external sources are controlled by us so it means that |
| - // they are "default". Method was_installed_by_default returns false because |
| - // extensions creation flags are ignored in case of default extensions with |
| - // update URL(the flags aren't passed to OnExternalExtensionUpdateUrlFound). |
| - // TODO(dpolukhin): remove this Chrome OS specific code as soon as creation |
| - // flags are not ignored. |
| - was_installed_by_default = |
| - extensions::Manifest::IsExternalLocation(extension->location()); |
| -#endif |
| - // Note: Component extensions are protected from modification/uninstallation |
| - // anyway, so there's no need to enforce them again for supervised users. |
| - // Also, leave policy-installed extensions alone - they have their own |
| - // management; in particular we don't want to override the force-install list. |
| - if (extensions::Manifest::IsComponentLocation(extension->location()) || |
| - extensions::Manifest::IsPolicyLocation(extension->location()) || |
| - extension->is_theme() || |
| - extension->from_bookmark() || |
| - extension->is_shared_module() || |
| - was_installed_by_default) { |
| - return EXTENSION_ALLOWED; |
| - } |
| - |
| - if (extension->was_installed_by_custodian()) |
| - return EXTENSION_FORCED; |
| - |
| - return EXTENSION_BLOCKED; |
| -} |
| -#endif |
| - |
| } // namespace |
| SupervisedUserService::~SupervisedUserService() { |
| @@ -173,6 +149,7 @@ SupervisedUserService::~SupervisedUserService() { |
| // static |
| void SupervisedUserService::RegisterProfilePrefs( |
| user_prefs::PrefRegistrySyncable* registry) { |
| + registry->RegisterDictionaryPref(prefs::kSupervisedUserApprovedExtensions); |
| registry->RegisterDictionaryPref(prefs::kSupervisedUserManualHosts); |
| registry->RegisterDictionaryPref(prefs::kSupervisedUserManualURLs); |
| registry->RegisterIntegerPref(prefs::kDefaultSupervisedUserFilteringBehavior, |
| @@ -263,11 +240,28 @@ void SupervisedUserService::ReportURL(const GURL& url, |
| callback.Run(false); |
| } |
| +void SupervisedUserService::AddExtensionInstallRequest( |
| + const std::string& extension_id, |
| + const base::Version& version, |
| + const SuccessCallback& callback) { |
| + std::string id = GetExtensionRequestId(extension_id, version); |
| + AddPermissionRequestInternal(base::Bind(CreateExtensionInstallRequest, id), |
| + callback, 0); |
| +} |
| + |
| +void SupervisedUserService::AddExtensionInstallRequest( |
| + const std::string& extension_id, |
| + const base::Version& version) { |
| + std::string id = GetExtensionRequestId(extension_id, version); |
| + AddPermissionRequestInternal(base::Bind(CreateExtensionInstallRequest, id), |
| + base::Bind(ExtensionInstallRequestSent, id), 0); |
| +} |
| + |
| void SupervisedUserService::AddExtensionUpdateRequest( |
| const std::string& extension_id, |
| const base::Version& version, |
| const SuccessCallback& callback) { |
| - std::string id = GetExtensionUpdateRequestId(extension_id, version); |
| + std::string id = GetExtensionRequestId(extension_id, version); |
| AddPermissionRequestInternal( |
| base::Bind(CreateExtensionUpdateRequest, id), callback, 0); |
| } |
| @@ -275,13 +269,13 @@ void SupervisedUserService::AddExtensionUpdateRequest( |
| void SupervisedUserService::AddExtensionUpdateRequest( |
| const std::string& extension_id, |
| const base::Version& version) { |
| - std::string id = GetExtensionUpdateRequestId(extension_id, version); |
| + std::string id = GetExtensionRequestId(extension_id, version); |
| AddExtensionUpdateRequest(extension_id, version, |
| base::Bind(ExtensionUpdateRequestSent, id)); |
| } |
| // static |
| -std::string SupervisedUserService::GetExtensionUpdateRequestId( |
| +std::string SupervisedUserService::GetExtensionRequestId( |
| const std::string& extension_id, |
| const base::Version& version) { |
| return base::StringPrintf("%s:%s", extension_id.c_str(), |
| @@ -587,6 +581,10 @@ void SupervisedUserService::SetActive(bool active) { |
| prefs::kDefaultSupervisedUserFilteringBehavior, |
| base::Bind(&SupervisedUserService::OnDefaultFilteringBehaviorChanged, |
| base::Unretained(this))); |
| + pref_change_registrar_.Add( |
| + prefs::kSupervisedUserApprovedExtensions, |
| + base::Bind(&SupervisedUserService::UpdateApprovedExtensions, |
| + base::Unretained(this))); |
| pref_change_registrar_.Add(prefs::kSupervisedUserSafeSites, |
| base::Bind(&SupervisedUserService::OnSafeSitesSettingChanged, |
| base::Unretained(this))); |
| @@ -608,6 +606,7 @@ void SupervisedUserService::SetActive(bool active) { |
| whitelist_service_->Init(); |
| UpdateManualHosts(); |
| UpdateManualURLs(); |
| + UpdateApprovedExtensions(); |
| #if !defined(OS_ANDROID) |
| // TODO(bauerb): Get rid of the platform-specific #ifdef here. |
| @@ -620,6 +619,7 @@ void SupervisedUserService::SetActive(bool active) { |
| pref_change_registrar_.Remove( |
| prefs::kDefaultSupervisedUserFilteringBehavior); |
| + pref_change_registrar_.Remove(prefs::kSupervisedUserApprovedExtensions); |
| pref_change_registrar_.Remove(prefs::kSupervisedUserManualHosts); |
| pref_change_registrar_.Remove(prefs::kSupervisedUserManualURLs); |
| for (const char* pref : kCustodianInfoPrefs) { |
| @@ -915,6 +915,34 @@ void SupervisedUserService::UpdateManualURLs() { |
| SupervisedUserServiceObserver, observer_list_, OnURLFilterChanged()); |
| } |
| +void SupervisedUserService::UpdateApprovedExtensions() { |
| + const base::DictionaryValue* dict = profile_->GetPrefs()->GetDictionary( |
| + prefs::kSupervisedUserApprovedExtensions); |
| + std::map<std::string, base::Version> approved_extensions_map; |
|
Marc Treib
2016/05/24 09:54:58
Why the separate variable? Can't you just approved
mamir
2016/06/03 09:45:55
Done.
|
| + for (base::DictionaryValue::Iterator it(*dict); !it.IsAtEnd(); it.Advance()) { |
| + std::string version; |
| + bool result = it.value().GetAsString(&version); |
| + DCHECK(result); |
| + approved_extensions_map[it.key()] = base::Version(version); |
|
Marc Treib
2016/05/24 09:54:58
Check that the version is valid before using it.
mamir
2016/06/03 09:45:55
Done.
|
| + } |
| + approved_extensions_map_ = approved_extensions_map; |
| + |
| + ExtensionService* service = |
| + extensions::ExtensionSystem::Get(profile_)->extension_service(); |
| + extensions::ExtensionPrefs* extension_prefs = |
| + extensions::ExtensionPrefs::Get(profile_); |
| + for (const auto& extensions_entry : approved_extensions_map_) { |
| + std::string extension_id = extensions_entry.first; |
|
Marc Treib
2016/05/24 09:54:58
const std::string& ?
mamir
2016/06/03 09:45:55
Done.
|
| + // Check other disable reasons and if none, enable the extension. |
| + if (!(extension_prefs->GetDisableReasons(extension_id) |
| + & ~extensions::Extension::DISABLE_CUSTODIAN_APPROVAL_REQUIRED)) { |
| + // Try to enable the extension, this will call the ManagmentPolicy and |
| + // properly enable the extension if possible. |
| + service->EnableExtension(extension_id); |
|
Marc Treib
2016/05/24 09:54:58
This will get called even if the extension is alre
mamir
2016/06/03 09:45:55
Done.
|
| + } |
| + } |
| +} |
| + |
| std::string SupervisedUserService::GetSupervisedUserName() const { |
| #if defined(OS_CHROMEOS) |
| // The active user can be NULL in unit tests. |
| @@ -954,6 +982,55 @@ void SupervisedUserService::Shutdown() { |
| } |
| #if defined(ENABLE_EXTENSIONS) |
| +SupervisedUserService::ExtensionState SupervisedUserService::GetExtensionState( |
| + const extensions::Extension& extension) const { |
| + bool was_installed_by_default = extension.was_installed_by_default(); |
| +#if defined(OS_CHROMEOS) |
| + // On Chrome OS all external sources are controlled by us so it means that |
| + // they are "default". Method was_installed_by_default returns false because |
| + // extensions creation flags are ignored in case of default extensions with |
| + // update URL(the flags aren't passed to OnExternalExtensionUpdateUrlFound). |
| + // TODO(dpolukhin): remove this Chrome OS specific code as soon as creation |
| + // flags are not ignored. |
| + was_installed_by_default = |
| + extensions::Manifest::IsExternalLocation(extension->location()); |
| +#endif |
| + // Note: Component extensions are protected from modification/uninstallation |
| + // anyway, so there's no need to enforce them again for supervised users. |
| + // Also, leave policy-installed extensions alone - they have their own |
| + // management; in particular we don't want to override the force-install list. |
| + if (extensions::Manifest::IsComponentLocation(extension.location()) || |
| + extensions::Manifest::IsPolicyLocation(extension.location()) || |
| + extension.is_theme() || extension.from_bookmark() || |
| + extension.is_shared_module() || was_installed_by_default) { |
| + return ExtensionState::ALLOWED; |
| + } |
| + |
| + if (extension.was_installed_by_custodian()) |
| + return ExtensionState::FORCED; |
| + |
| + // TODO(mamir): if(on blacklist) return BLOCKED; |
| + if (!base::FeatureList::IsEnabled( |
| + supervised_users::kSupervisedUserInitiatedExtensionInstall)) |
| + return ExtensionState::BLOCKED; |
| + |
| + const std::string& id = extension.id(); |
| + // TODO(mamir) : compare the approved and installed versions before returning. |
| + if (approved_extensions_map_.count(id) == 0) |
| + return ExtensionState::REQUIRE_APPROVAL; |
| + |
| + |
|
Marc Treib
2016/05/24 09:54:58
nit: extra empty line
mamir
2016/06/03 09:45:55
Done.
|
| + extensions::ExtensionPrefs* extension_prefs = |
| + extensions::ExtensionPrefs::Get(profile_); |
| + |
| + if (extension_prefs->GetInstalledExtensionInfo(id) |
|
Marc Treib
2016/05/24 09:54:58
Is this check needed?
mamir
2016/06/03 09:45:55
Done.
|
| + && extension_prefs->HasDisableReason( |
| + id, extensions::Extension::DISABLE_PERMISSIONS_INCREASE)) |
| + return ExtensionState::REQUIRE_APPROVAL; |
| + |
| + return ExtensionState::ALLOWED; |
| +} |
| + |
| std::string SupervisedUserService::GetDebugPolicyProviderName() const { |
| // Save the string space in official builds. |
| #ifdef NDEBUG |
| @@ -967,8 +1044,8 @@ std::string SupervisedUserService::GetDebugPolicyProviderName() const { |
| bool SupervisedUserService::UserMayLoad(const extensions::Extension* extension, |
| base::string16* error) const { |
| DCHECK(ProfileIsSupervised()); |
| - ExtensionState result = GetExtensionState(extension); |
| - bool may_load = (result != EXTENSION_BLOCKED); |
| + ExtensionState result = GetExtensionState(*extension); |
| + bool may_load = (result != ExtensionState::BLOCKED); |
| if (!may_load && error) |
| *error = GetExtensionsLockedMessage(); |
| return may_load; |
| @@ -978,8 +1055,13 @@ bool SupervisedUserService::UserMayModifySettings( |
| const extensions::Extension* extension, |
| base::string16* error) const { |
| DCHECK(ProfileIsSupervised()); |
| - ExtensionState result = GetExtensionState(extension); |
| - bool may_modify = (result == EXTENSION_ALLOWED); |
| + ExtensionState result = GetExtensionState(*extension); |
| + // While the following check allows the SU to modify the settings and enable |
| + // or disable the extension, MustRemainDisabled properly takes care of |
| + // keeping an extension disabled when required. |
| + // For custodian-installed extensions, the state is always FORCED, even if |
| + // it's waiting for an update approval. |
| + bool may_modify = (result != ExtensionState::FORCED); |
| if (!may_modify && error) |
| *error = GetExtensionsLockedMessage(); |
| return may_modify; |
| @@ -992,13 +1074,48 @@ bool SupervisedUserService::MustRemainInstalled( |
| const extensions::Extension* extension, |
| base::string16* error) const { |
| DCHECK(ProfileIsSupervised()); |
| - ExtensionState result = GetExtensionState(extension); |
| - bool may_not_uninstall = (result == EXTENSION_FORCED); |
| + ExtensionState result = GetExtensionState(*extension); |
| + bool may_not_uninstall = (result == ExtensionState::FORCED); |
| if (may_not_uninstall && error) |
| *error = GetExtensionsLockedMessage(); |
| return may_not_uninstall; |
| } |
| +bool SupervisedUserService::MustRemainDisabled( |
| + const extensions::Extension* extension, |
|
Marc Treib
2016/05/24 09:54:58
optional: You could add
using extensions::Extensio
mamir
2016/06/03 09:45:55
Done.
|
| + extensions::Extension::DisableReason* reason, |
| + base::string16* error) const { |
| + DCHECK(ProfileIsSupervised()); |
| + ExtensionState state = GetExtensionState(*extension); |
| + bool must_remain_disabled = (state == ExtensionState::BLOCKED) |
| + || (state == ExtensionState::REQUIRE_APPROVAL); |
| + |
| + if (must_remain_disabled) { |
| + if (reason) |
| + *reason = extensions::Extension::DISABLE_CUSTODIAN_APPROVAL_REQUIRED; |
| + if (error) |
| + *error = l10n_util::GetStringUTF16(IDS_EXTENSIONS_LOCKED_SUPERVISED_USER); |
| + if (base::FeatureList::IsEnabled( |
| + supervised_users::kSupervisedUserInitiatedExtensionInstall)) { |
| + // If the Extension isn't pending a custodian approval already, send |
| + // an approval request. |
| + extensions::ExtensionPrefs* extension_prefs = |
| + extensions::ExtensionPrefs::Get(profile_); |
| + if (!extension_prefs->HasDisableReason( |
| + extension->id(), |
| + extensions::Extension::DISABLE_CUSTODIAN_APPROVAL_REQUIRED)) { |
| + // MustRemainDisabled is a const method and hence cannot call |
| + // AddExtensionInstallRequest directly. |
| + SupervisedUserService* supervised_user_service = |
| + SupervisedUserServiceFactory::GetForProfile(profile_); |
| + supervised_user_service->AddExtensionInstallRequest( |
| + extension->id(), *extension->version()); |
| + } |
| + } |
| + } |
| + return must_remain_disabled; |
| +} |
| + |
| void SupervisedUserService::SetExtensionsActive() { |
| extensions::ExtensionSystem* extension_system = |
| extensions::ExtensionSystem::Get(profile_); |
