/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: t; c-basic-offset: 8 -*- * * Copyright (C) 2003 Christian Persch * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by * the Free Software Foundation; either version 2, or (at your option) * any later version. * * This program is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. * * You should have received a copy of the GNU General Public License * along with this program; if not, write to the Free Software * Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. * * $Id$ */ #include "mozilla-config.h" #include "config.h" #include "EphyContentPolicy.h" #include "ephy-embed-shell.h" #include "ephy-embed-single.h" #include "eel-gconf-extensions.h" #include "ephy-debug.h" #include #include #define MOZILLA_STRICT_API #include #undef MOZILLA_STRICT_API #define CONF_LOCKDOWN_DISABLE_UNSAFE_PROTOCOLS "/apps/epiphany/lockdown/disable_unsafe_protocols" #define CONF_LOCKDOWN_ADDITIONAL_SAFE_PROTOCOLS "/apps/epiphany/lockdown/additional_safe_protocols" NS_IMPL_ISUPPORTS1(EphyContentPolicy, nsIContentPolicy) EphyContentPolicy::EphyContentPolicy() { LOG ("EphyContentPolicy ctor (%p)", this) mLocked = eel_gconf_get_boolean (CONF_LOCKDOWN_DISABLE_UNSAFE_PROTOCOLS); mSafeProtocols = eel_gconf_get_string_list (CONF_LOCKDOWN_ADDITIONAL_SAFE_PROTOCOLS); mSafeProtocols = g_slist_prepend (mSafeProtocols, g_strdup ("https")); mSafeProtocols = g_slist_prepend (mSafeProtocols, g_strdup ("http")); mEmbedSingle = ephy_embed_shell_get_embed_single (embed_shell); g_return_if_fail (mEmbedSingle); } EphyContentPolicy::~EphyContentPolicy() { LOG ("EphyContentPolicy dtor (%p)", this) g_slist_foreach (mSafeProtocols, (GFunc) g_free, NULL); g_slist_free (mSafeProtocols); } #if MOZ_NSICONTENTPOLICY_VARIANT == 2 NS_IMETHODIMP EphyContentPolicy::ShouldLoad(PRUint32 aContentType, nsIURI *aContentLocation, nsIURI *aRequestingLocation, nsISupports *aContext, const nsACString &aMimeTypeGuess, nsISupports *aExtra, PRInt16 *aDecision) { NS_ENSURE_ARG (aContentLocation); nsEmbedCString contentScheme; aContentLocation->GetScheme (contentScheme); nsEmbedCString contentSpec; aContentLocation->GetSpec (contentSpec); /* first general lockdown check */ if (mLocked && !g_slist_find_custom (mSafeProtocols, contentScheme.get(), (GCompareFunc) strcmp) && strcmp (contentSpec.get(), "about:blank") != 0) { *aDecision = nsIContentPolicy::REJECT_REQUEST; return NS_OK; } nsEmbedCString requestingSpec; if (aRequestingLocation) { aRequestingLocation->GetSpec (requestingSpec); } gboolean result = FALSE; g_signal_emit_by_name (mEmbedSingle, "check-content", (EphyContentCheckType) aContentType, contentSpec.get(), requestingSpec.get(), nsEmbedCString(aMimeTypeGuess).get(), &result); if (result) { *aDecision = nsIContentPolicy::REJECT_REQUEST; } else { *aDecision = nsIContentPolicy::ACCEPT; } return NS_OK; } NS_IMETHODIMP EphyContentPolicy::ShouldProcess(PRUint32 aContentType, nsIURI *aContentLocation, nsIURI *aRequestingLocation, nsISupports *aContext, const nsACString &aMimeType, nsISupports *aExtra, PRInt16 *aDecision) { *aDecision = nsIContentPolicy::ACCEPT; return NS_OK; } #else /* boolean shouldLoad (in PRInt32 contentType, in nsIURI contentLocation, in nsISupports ctxt, in nsIDOMWindow window); */ NS_IMETHODIMP EphyContentPolicy::ShouldLoad(PRInt32 aContentType, nsIURI *aContentLocation, nsISupports *aContext, nsIDOMWindow *aWindow, PRBool *_retval) { NS_ENSURE_ARG (aContentLocation); nsEmbedCString contentScheme; aContentLocation->GetScheme (contentScheme); nsEmbedCString contentSpec; aContentLocation->GetSpec (contentSpec); /* first general lockdown check */ if (mLocked && !g_slist_find_custom (mSafeProtocols, contentScheme.get(), (GCompareFunc) strcmp) && strcmp (contentSpec.get(), "about:blank") != 0) { *_retval = PR_FALSE; return NS_OK; } /* translate to variant-2 types */ EphyContentCheckType type; switch (aContentType) { case nsIContentPolicy::SCRIPT: type = EPHY_CONTENT_CHECK_TYPE_SCRIPT; break; case nsIContentPolicy::IMAGE: type = EPHY_CONTENT_CHECK_TYPE_IMAGE; break; case nsIContentPolicy::STYLESHEET: type = EPHY_CONTENT_CHECK_TYPE_STYLESHEET; break; case nsIContentPolicy::OBJECT: type = EPHY_CONTENT_CHECK_TYPE_OBJECT; break; case nsIContentPolicy::SUBDOCUMENT: type = EPHY_CONTENT_CHECK_TYPE_SUBDOCUMENT; break; case nsIContentPolicy::CONTROL_TAG: type = EPHY_CONTENT_CHECK_TYPE_REFRESH; break; case nsIContentPolicy::DOCUMENT: type = EPHY_CONTENT_CHECK_TYPE_DOCUMENT; break; case nsIContentPolicy::OTHER: case nsIContentPolicy::RAW_URL: default: type = EPHY_CONTENT_CHECK_TYPE_OTHER; break; } gboolean result = FALSE; g_signal_emit_by_name (mEmbedSingle, "check-content", type, contentSpec.get(), "", "", &result); *_retval = !result; return NS_OK; } /* boolean shouldProcess (in PRInt32 contentType, in nsIURI documentLocation, in nsISupports ctxt, in nsIDOMWindow window); */ NS_IMETHODIMP EphyContentPolicy::ShouldProcess(PRInt32 contentType, nsIURI *documentLocation, nsISupports *ctxt, nsIDOMWindow *window, PRBool *_retval) { /* This is never called. */ LOG ("ShouldProcess: this is quite unexpected!") *_retval = PR_TRUE; return NS_OK; } #endif /* MOZ_NSICONTENTPOLICY_VARIANT == 2 */