Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1665)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/extensions/extension_management_internal.h

Issue 595363002: Add policy controlled permission block list for extensions (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@ext-fix
Patch Set: fix memory leaks Created 6 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/extensions/extension_management_constants.cc ('k') | chrome/browser/extensions/extension_management_internal.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/extensions/extension_management_internal.h
diff --git a/chrome/browser/extensions/extension_management_internal.h b/chrome/browser/extensions/extension_management_internal.h
index d01bb339c9547c6b236612518172220044ee970a..0b3eaffb3ab9f7523f77576c754a6157dfacf19a 100644
--- a/chrome/browser/extensions/extension_management_internal.h
+++ b/chrome/browser/extensions/extension_management_internal.h
@@ -10,6 +10,7 @@
#include "base/macros.h"
#include "chrome/browser/extensions/extension_management.h"
#include "extensions/common/manifest.h"
+#include "extensions/common/permissions/api_permission_set.h"
namespace base {
class DictionaryValue;
@@ -42,6 +43,8 @@ struct IndividualSettings {
// management preference and |scope| represents the applicable range of the
// settings, a single extension, a group of extensions or default settings.
// Note that in case of parsing errors, |this| will NOT be left untouched.
+ // This method is required to be called in order of ParsingScope, i.e. first
+ // SCOPE_DEFAULT, then SCOPE_INDIVIDUAL.
bool Parse(const base::DictionaryValue* dict, ParsingScope scope);
// Extension installation mode. Setting this to INSTALLATION_FORCED or
@@ -55,6 +58,17 @@ struct IndividualSettings {
ExtensionManagement::InstallationMode installation_mode;
std::string update_url;
+ // Permissions settings for extensions. These settings won't grant permissions
+ // to extensions automatically. Instead, these settings will provide a list of
+ // blocked permissions for each extension. That is, if an extension requires a
+ // permission which has been blacklisted, this extension will not be allowed
+ // to load. And if it contains a blocked permission as optional requirement,
+ // it will be allowed to load (of course, with permission granted from user if
+ // necessary), but conflicting permissions will be dropped. These settings
+ // will merge from the default settings, and unspecified settings will take
+ // value from default settings.
+ APIPermissionSet blocked_permissions;
+
private:
DISALLOW_ASSIGN(IndividualSettings);
};
« no previous file with comments | « chrome/browser/extensions/extension_management_constants.cc ('k') | chrome/browser/extensions/extension_management_internal.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698