Permissions: Allow PermissionManager to return more PermissionStatusSources.

chrome/browser/plugins/plugin_info_message_filter.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "chrome/browser/plugins/plugin_info_message_filter.h"
 
 #include <stddef.h>
 
 #include <algorithm>
 #include <memory>
 #include <utility>
 
 #include "base/bind.h"
 #include "base/memory/ptr_util.h"
 #include "base/memory/singleton.h"
 #include "base/metrics/histogram_macros.h"
 #include "base/strings/utf_string_conversions.h"
 #include "base/task_runner_util.h"
 #include "base/threading/thread_task_runner_handle.h"
 #include "build/build_config.h"
 #include "chrome/browser/browser_process.h"
 #include "chrome/browser/content_settings/host_content_settings_map_factory.h"
+#include "chrome/browser/permissions/permission_result.h"
 #include "chrome/browser/plugins/chrome_plugin_service_filter.h"
 #include "chrome/browser/plugins/plugin_finder.h"
 #include "chrome/browser/plugins/plugin_metadata.h"
 #include "chrome/browser/plugins/plugin_prefs.h"
 #include "chrome/browser/plugins/plugin_utils.h"
 #include "chrome/browser/plugins/plugins_field_trial.h"
 #include "chrome/browser/profiles/profile.h"
 #include "chrome/browser/ui/browser_otr_state.h"
 #include "chrome/common/chrome_content_client.h"
 #include "chrome/common/chrome_features.h"
@@ skipping 282 matching lines @@
     const url::Origin& main_frame_origin,
     const WebPluginInfo& plugin,
     PluginMetadata::SecurityStatus security_status,
     const std::string& plugin_identifier,
     ChromeViewHostMsg_GetPluginInfo_Status* status) const {
   if (security_status == PluginMetadata::SECURITY_STATUS_FULLY_TRUSTED) {
     *status = ChromeViewHostMsg_GetPluginInfo_Status::kAllowed;
     return;
   }
 
-  ContentSetting plugin_setting = CONTENT_SETTING_DEFAULT;
+  PermissionResult plugin_result(CONTENT_SETTING_DEFAULT,
+                                 PermissionStatusSource::UNSPECIFIED);
   bool uses_default_content_setting = true;
   bool is_managed = false;
   // Check plugin content settings. The primary URL is the top origin URL and
   // the secondary URL is the plugin URL.
   PluginUtils::GetPluginContentSetting(
       host_content_settings_map_, plugin, main_frame_origin, url,
-      plugin_identifier, &plugin_setting, &uses_default_content_setting,
+      plugin_identifier, &plugin_result, &uses_default_content_setting,
       &is_managed);
 
   // TODO(tommycli): Remove once we deprecate the plugin ASK policy.
-  bool legacy_ask_user = plugin_setting == CONTENT_SETTING_ASK;
-  plugin_setting = PluginsFieldTrial::EffectiveContentSetting(
+  bool legacy_ask_user = plugin_result.content_setting == CONTENT_SETTING_ASK;
+  plugin_result.content_setting = PluginsFieldTrial::EffectiveContentSetting(
       host_content_settings_map_, CONTENT_SETTINGS_TYPE_PLUGINS,
-      plugin_setting);
+      plugin_result.content_setting);
 
-  DCHECK(plugin_setting != CONTENT_SETTING_DEFAULT);
-  DCHECK(plugin_setting != CONTENT_SETTING_ASK);
+  DCHECK(plugin_result.content_setting != CONTENT_SETTING_DEFAULT);
+  DCHECK(plugin_result.content_setting != CONTENT_SETTING_ASK);
 
   if (*status ==
       ChromeViewHostMsg_GetPluginInfo_Status::kFlashHiddenPreferHtml) {
-    if (plugin_setting == CONTENT_SETTING_BLOCK) {
-      *status = is_managed && !legacy_ask_user
-                    ? ChromeViewHostMsg_GetPluginInfo_Status::kBlockedByPolicy
-                    : ChromeViewHostMsg_GetPluginInfo_Status::kBlockedNoLoading;
+    if (plugin_result.content_setting == CONTENT_SETTING_BLOCK) {
+      if (is_managed && !legacy_ask_user) {
+        *status = ChromeViewHostMsg_GetPluginInfo_Status::kBlockedByPolicy;
+        plugin_result.source = PermissionStatusSource::ENTERPRISE_POLICY;
+      } else {
+        *status = ChromeViewHostMsg_GetPluginInfo_Status::kBlockedNoLoading;
+      }
     }
     return;
   }
 
 #if BUILDFLAG(ENABLE_PLUGINS)
   // Check if the plugin is outdated.
   if (security_status == PluginMetadata::SECURITY_STATUS_OUT_OF_DATE &&
       !allow_outdated_plugins_.GetValue()) {
     if (allow_outdated_plugins_.IsManaged()) {
       *status = ChromeViewHostMsg_GetPluginInfo_Status::kOutdatedDisallowed;
     } else {
       *status = ChromeViewHostMsg_GetPluginInfo_Status::kOutdatedBlocked;
     }
     return;
   }
 #endif  // BUILDFLAG(ENABLE_PLUGINS)
 
   // Check if the plugin is crashing too much.
   if (PluginService::GetInstance()->IsPluginUnstable(plugin.path) &&
       !always_authorize_plugins_.GetValue() &&
-      plugin_setting != CONTENT_SETTING_BLOCK &&
+      plugin_result.content_setting != CONTENT_SETTING_BLOCK &&
       uses_default_content_setting) {
     *status = ChromeViewHostMsg_GetPluginInfo_Status::kUnauthorized;
     return;
   }
 
 #if BUILDFLAG(ENABLE_EXTENSIONS)
   // If an app has explicitly made internal resources available by listing them
   // in |accessible_resources| in the manifest, then allow them to be loaded by
   // plugins inside a guest-view.
   if (url.SchemeIs(extensions::kExtensionScheme) && !is_managed &&
-      plugin_setting == CONTENT_SETTING_BLOCK &&
+      plugin_result.content_setting == CONTENT_SETTING_BLOCK &&
       IsPluginLoadingAccessibleResourceInWebView(extension_registry_,
                                                  render_process_id_, url)) {
-    plugin_setting = CONTENT_SETTING_ALLOW;
+    plugin_result.content_setting = CONTENT_SETTING_ALLOW;
+    plugin_result.source = PermissionStatusSource::EXTENSION;
   }
 #endif  // BUILDFLAG(ENABLE_EXTENSIONS)
 
-  if (plugin_setting == CONTENT_SETTING_DETECT_IMPORTANT_CONTENT ||
-      (plugin_setting == CONTENT_SETTING_ALLOW &&
+  if (plugin_result.content_setting ==
+          CONTENT_SETTING_DETECT_IMPORTANT_CONTENT ||
+      (plugin_result.content_setting == CONTENT_SETTING_ALLOW &&
        PluginUtils::ShouldPreferHtmlOverPlugins(host_content_settings_map_) &&
        !base::FeatureList::IsEnabled(features::kRunAllFlashInAllowMode))) {
     *status = ChromeViewHostMsg_GetPluginInfo_Status::kPlayImportantContent;
-  } else if (plugin_setting == CONTENT_SETTING_BLOCK) {
+  } else if (plugin_result.content_setting == CONTENT_SETTING_BLOCK) {
     // For managed users with the ASK policy, we allow manually running plugins
     // via context menu. This is the closest to admin intent.
-    *status = is_managed && !legacy_ask_user
-                  ? ChromeViewHostMsg_GetPluginInfo_Status::kBlockedByPolicy
-                  : ChromeViewHostMsg_GetPluginInfo_Status::kBlocked;
+    if (is_managed && !legacy_ask_user) {
+      *status = ChromeViewHostMsg_GetPluginInfo_Status::kBlockedByPolicy;
+      plugin_result.source = PermissionStatusSource::ENTERPRISE_POLICY;
+    } else {
+      *status = ChromeViewHostMsg_GetPluginInfo_Status::kBlocked;
+    }
   }
 
 #if BUILDFLAG(ENABLE_EXTENSIONS)
   // Allow an embedder of <webview> to block a plugin from being loaded inside
   // the guest. In order to do this, set the status to 'Unauthorized' here,
   // and update the status as appropriate depending on the response from the
   // embedder.
   if (*status == ChromeViewHostMsg_GetPluginInfo_Status::kAllowed ||
       *status == ChromeViewHostMsg_GetPluginInfo_Status::kBlocked ||
       *status ==
@@ skipping 179 matching lines @@
       status == ChromeViewHostMsg_GetPluginInfo_Status::kPlayImportantContent) {
     ChromePluginServiceFilter::GetInstance()->AuthorizePlugin(
         render_process_id_, path);
   }
 }
 
 bool PluginInfoMessageFilter::Context::IsPluginEnabled(
     const content::WebPluginInfo& plugin) const {
   return plugin_prefs_->IsPluginEnabled(plugin);
 }