1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
|
// This Source Code Form is subject to the terms of the Mozilla Public
// License, v. 2.0. If a copy of the MPL was not distributed with this
// file, You can obtain one at http://mozilla.org/MPL/2.0/.
this.EXPORTED_SYMBOLS = ["PermissionsUtils"];
const {classes: Cc, interfaces: Ci, utils: Cu, results: Cr} = Components;
Cu.import("resource://gre/modules/Services.jsm");
Cu.import("resource://gre/modules/BrowserUtils.jsm")
var gImportedPrefBranches = new Set();
function importPrefBranch(aPrefBranch, aPermission, aAction) {
let list = Services.prefs.getChildList(aPrefBranch, {});
for (let pref of list) {
let origins = "";
try {
origins = Services.prefs.getCharPref(pref);
} catch (e) {}
if (!origins)
continue;
origins = origins.split(",");
for (let origin of origins) {
let principals = [];
try {
principals = [ Services.scriptSecurityManager.createCodebasePrincipalFromOrigin(origin) ];
} catch (e) {
// This preference used to contain a list of hosts. For back-compat
// reasons, we convert these hosts into http:// and https:// permissions
// on default ports.
try {
let httpURI = Services.io.newURI("http://" + origin, null, null);
let httpsURI = Services.io.newURI("https://" + origin, null, null);
principals = [
Services.scriptSecurityManager.createCodebasePrincipal(httpURI, {}),
Services.scriptSecurityManager.createCodebasePrincipal(httpsURI, {})
];
} catch (e2) {}
}
for (let principal of principals) {
try {
Services.perms.addFromPrincipal(principal, aPermission, aAction);
} catch (e) {}
}
}
Services.prefs.setCharPref(pref, "");
}
}
this.PermissionsUtils = {
/**
* Import permissions from perferences to the Permissions Manager. After being
* imported, all processed permissions will be set to an empty string.
* Perferences are only processed once during the application's
* lifetime - it's safe to call this multiple times without worrying about
* doing unnecessary work, as the preferences branch will only be processed
* the first time.
*
* @param aPrefBranch Preferences branch to import from. The preferences
* under this branch can specify whitelist (ALLOW_ACTION)
* or blacklist (DENY_ACTION) additions using perference
* names of the form:
* * <BRANCH>.whitelist.add.<ID>
* * <BRANCH>.blacklist.add.<ID>
* Where <ID> can be any valid preference name.
* The value is expected to be a comma separated list of
* host named. eg:
* * something.example.com
* * foo.exmaple.com,bar.example.com
*
* @param aPermission Permission name to be passsed to the Permissions
* Manager.
*/
importFromPrefs: function(aPrefBranch, aPermission) {
if (!aPrefBranch.endsWith("."))
aPrefBranch += ".";
// Ensure we only import this pref branch once.
if (gImportedPrefBranches.has(aPrefBranch))
return;
importPrefBranch(aPrefBranch + "whitelist.add", aPermission,
Services.perms.ALLOW_ACTION);
importPrefBranch(aPrefBranch + "blacklist.add", aPermission,
Services.perms.DENY_ACTION);
gImportedPrefBranches.add(aPrefBranch);
}
};
|