| Index: chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.h
|
| diff --git a/chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.h b/chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.h
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..45526b3f2ea1b352883e6bbd82593c9b609f6cbd
|
| --- /dev/null
|
| +++ b/chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.h
|
| @@ -0,0 +1,39 @@
|
| +// Copyright 2017 The Chromium Authors. All rights reserved.
|
| +// Use of this source code is governed by a BSD-style license that can be
|
| +// found in the LICENSE file.
|
| +
|
| +#ifndef CHROME_BROWSER_CHROMEOS_EXTENSIONS_PERMISSIONS_UPDATER_DELEGATE_CHROMEOS_H_
|
| +#define CHROME_BROWSER_CHROMEOS_EXTENSIONS_PERMISSIONS_UPDATER_DELEGATE_CHROMEOS_H_
|
| +
|
| +#include <memory>
|
| +
|
| +#include "base/macros.h"
|
| +#include "chrome/browser/extensions/permissions_updater.h"
|
| +
|
| +namespace extensions {
|
| +
|
| +class Extension;
|
| +class PermissionSet;
|
| +
|
| +// In Public Sessions, apps and extensions are force-installed by admin policy
|
| +// so the user does not get a chance to review the permissions for these apps.
|
| +// This is not acceptable from a security/privacy standpoint, therefore we
|
| +// remove unsecure permissions (whitelisted apps and extensions are exempt from
|
| +// this - eg. remote desktop clients).
|
| +class PermissionsUpdaterDelegateChromeOS : public PermissionsUpdater::Delegate {
|
| + public:
|
| + PermissionsUpdaterDelegateChromeOS();
|
| + ~PermissionsUpdaterDelegateChromeOS() override;
|
| +
|
| + // PermissionsUpdater::Delegate
|
| + void InitializePermissions(
|
| + const Extension* extension,
|
| + std::unique_ptr<const PermissionSet>* granted_permissions) override;
|
| +
|
| + private:
|
| + DISALLOW_COPY_AND_ASSIGN(PermissionsUpdaterDelegateChromeOS);
|
| +};
|
| +
|
| +} // namespace extensions
|
| +
|
| +#endif // CHROME_BROWSER_CHROMEOS_EXTENSIONS_PERMISSIONS_UPDATER_DELEGATE_CHROMEOS_H_
|
|
|
Chromium Code Reviews
Issue 2794803003:
PS - Remove Clipboard Read permission from extensions in Public Sessions (except for whitelisted on… (Closed)
