Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1009)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: third_party/WebKit/Source/modules/sensor/Sensor.cpp

Issue 2353493002: [Sensors] Allow Sensor API only on secure top-level browsing contexts and add frequency checks (Closed)
Patch Set: Comments from Tim Created 4 years, 3 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« third_party/WebKit/LayoutTests/sensor/ambient-light-sensor.html ('K') | « third_party/WebKit/Source/modules/sensor/Sensor.h ('k') | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: third_party/WebKit/Source/modules/sensor/Sensor.cpp
diff --git a/third_party/WebKit/Source/modules/sensor/Sensor.cpp b/third_party/WebKit/Source/modules/sensor/Sensor.cpp
index 872afd786fdd7de5f4333a06813c33abd1eb43ad..d5f1b0421b799ab73d20664171a2d3c7b609c7ee 100644
--- a/third_party/WebKit/Source/modules/sensor/Sensor.cpp
+++ b/third_party/WebKit/Source/modules/sensor/Sensor.cpp
@@ -6,6 +6,7 @@
#include "core/dom/Document.h"
#include "core/dom/ExceptionCode.h"
+#include "core/inspector/ConsoleMessage.h"
#include "device/generic_sensor/public/interfaces/sensor.mojom-blink.h"
#include "modules/sensor/SensorErrorEvent.h"
#include "modules/sensor/SensorPollingStrategy.h"
@@ -17,15 +18,42 @@ using namespace device::mojom::blink;
namespace blink {
-Sensor::Sensor(ExecutionContext* executionContext, const SensorOptions& sensorOptions, SensorType type)
+Sensor::Sensor(ScriptState* scriptState, const SensorOptions& sensorOptions, ExceptionState& exceptionState, SensorType type)
: ActiveScriptWrappable(this)
- , ContextLifecycleObserver(executionContext)
- , PageVisibilityObserver(toDocument(executionContext)->page())
+ , ContextLifecycleObserver(scriptState->getExecutionContext())
+ , PageVisibilityObserver(toDocument(scriptState->getExecutionContext())->page())
, m_sensorOptions(sensorOptions)
, m_type(type)
, m_state(Sensor::SensorState::IDLE)
, m_storedData()
{
+ // Check secure context.
+ String errorMessage;
+ if (!scriptState->getExecutionContext()->isSecureContext(errorMessage)) {
+ exceptionState.throwDOMException(SecurityError, errorMessage);
+ return;
+ }
+
+ // Check top-level browsing context.
+ if (!scriptState->domWindow() || !scriptState->domWindow()->frame() || !scriptState->domWindow()->frame()->isMainFrame()) {
+ exceptionState.throwSecurityError("Must be in a top-level browsing context");
+ return;
+ }
+
+ // Check the given frequency value.
+ if (m_sensorOptions.hasFrequency()) {
+ double frequency = m_sensorOptions.frequency();
+ if (frequency <= 0.0) {
+ exceptionState.throwRangeError("Frequency must be positive.");
+ return;
+ }
+
+ if (frequency > SensorConfiguration::kMaxAllowedFrequency) {
+ m_sensorOptions.setFrequency(SensorConfiguration::kMaxAllowedFrequency);
+ ConsoleMessage* consoleMessage = ConsoleMessage::create(JSMessageSource, InfoMessageLevel, "Frequency is limited to 60 Hz.");
+ scriptState->getExecutionContext()->addConsoleMessage(consoleMessage);
+ }
+ }
}
Sensor::~Sensor() = default;
« third_party/WebKit/LayoutTests/sensor/ambient-light-sensor.html ('K') | « third_party/WebKit/Source/modules/sensor/Sensor.h ('k') | no next file » | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698