Skip to content

GitLab

T
tangled
Commit 07350bd4 authored by Nicolas Ouellet-Payeur's avatar Nicolas Ouellet-Payeur Committed by Commit Bot
Browse files
Options

[Forced Extensions] Let users control 'Allow access to file URLs' toggle 

Previously, the toggle would be hidden for force-installed extensions
because it didn't work. With this patch, it is visible again, and won't
throw a "cannot modify" error when the user tries to change it.

Bug: 173640
Change-Id: Iae7cf94b69da975449935ee4c7b8f68aebbe7fac
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2340317
Commit-Queue: Nicolas Ouellet-Payeur <nicolaso@chromium.org>
Reviewed-by: default avatarDevlin <rdevlin.cronin@chromium.org>
Cr-Commit-Position: refs/heads/master@{#796126}
parent cee6b7ce
Hide whitespace changes
Inline Side-by-side
Showing with 1 addition and 45 deletions
chrome/browser/extensions/api/developer_private/developer_private_api.cc
View file @ 07350bd4
...@@ -109,8 +109,6 @@ namespace developer = api::developer_private; ...@@ -109,8 +109,6 @@ namespace developer = api::developer_private;
namespace { namespace {
const char kNoSuchExtensionError[] = "No such extension."; const char kNoSuchExtensionError[] = "No such extension.";
const char kCannotModifyPolicyExtensionError[] =
"Cannot modify the extension by policy.";
const char kRequiresUserGestureError[] = const char kRequiresUserGestureError[] =
"This action requires a user gesture."; "This action requires a user gesture.";
const char kCouldNotShowSelectFileDialogError[] = const char kCouldNotShowSelectFileDialogError[] =
...@@ -183,23 +181,6 @@ void GetManifestError(const std::string& error, ...@@ -183,23 +181,6 @@ void GetManifestError(const std::string& error,
base::BindOnce(std::move(callback), extension_path, error, line)); base::BindOnce(std::move(callback), extension_path, error, line));
} }
bool UserCanModifyExtensionConfiguration(
const Extension* extension,
content::BrowserContext* browser_context,
std::string* error) {
ManagementPolicy* management_policy =
ExtensionSystem::Get(browser_context)->management_policy();
if (!management_policy->UserMayModifySettings(extension, nullptr)) {
LOG(ERROR) << "Attempt to change settings of an extension that is "
<< "non-usermanagable was made. Extension id : "
<< extension->id();
*error = kCannotModifyPolicyExtensionError;
return false;
}
return true;
}
// Runs the install verifier for all extensions that are enabled, disabled, or // Runs the install verifier for all extensions that are enabled, disabled, or
// terminated. // terminated.
void PerformVerificationCheck(content::BrowserContext* context) { void PerformVerificationCheck(content::BrowserContext* context) {
...@@ -906,12 +887,6 @@ DeveloperPrivateUpdateExtensionConfigurationFunction::Run() { ...@@ -906,12 +887,6 @@ DeveloperPrivateUpdateExtensionConfigurationFunction::Run() {
return RespondNow(Error(kRequiresUserGestureError)); return RespondNow(Error(kRequiresUserGestureError));
if (update.file_access) { if (update.file_access) {
std::string error;
if (!UserCanModifyExtensionConfiguration(extension,
browser_context(),
&error)) {
return RespondNow(Error(std::move(error)));
}
util::SetAllowFileAccess( util::SetAllowFileAccess(
extension->id(), browser_context(), *update.file_access); extension->id(), browser_context(), *update.file_access);
} }
......
chrome/browser/extensions/api/developer_private/extension_info_generator.cc
View file @ 07350bd4
...@@ -585,8 +585,7 @@ void ExtensionInfoGenerator::CreateExtensionInfoHelper( ...@@ -585,8 +585,7 @@ void ExtensionInfoGenerator::CreateExtensionInfoHelper(
ManagementPolicy* management_policy = extension_system_->management_policy(); ManagementPolicy* management_policy = extension_system_->management_policy();
info->file_access.is_enabled = info->file_access.is_enabled =
(extension.wants_file_access() || (extension.wants_file_access() ||
Manifest::ShouldAlwaysAllowFileAccess(extension.location())) && Manifest::ShouldAlwaysAllowFileAccess(extension.location()));
management_policy->UserMayModifySettings(&extension, nullptr);
info->file_access.is_active = info->file_access.is_active =
util::AllowFileAccess(extension.id(), browser_context_); util::AllowFileAccess(extension.id(), browser_context_);
......
chrome/browser/extensions/api/developer_private/extension_info_generator_unittest.cc
View file @ 07350bd4
...@@ -763,24 +763,6 @@ TEST_F(ExtensionInfoGeneratorUnitTest, ...@@ -763,24 +763,6 @@ TEST_F(ExtensionInfoGeneratorUnitTest,
} }
} }
// Test that file:// access checkbox does not show up when the user can't
// modify an extension's settings. https://crbug.com/173640.
TEST_F(ExtensionInfoGeneratorUnitTest, ExtensionInfoLockedAllUrls) {
// Force installed extensions aren't user modifyable.
scoped_refptr<const Extension> locked_extension =
CreateExtension("locked", ListBuilder().Append("file://*/*").Build(),
Manifest::EXTERNAL_POLICY_DOWNLOAD);
std::unique_ptr<developer::ExtensionInfo> info =
GenerateExtensionInfo(locked_extension->id());
// Extension wants file:// access but the checkbox will not appear
// in chrome://extensions.
EXPECT_TRUE(locked_extension->wants_file_access());
EXPECT_FALSE(info->file_access.is_enabled);
EXPECT_FALSE(info->file_access.is_active);
}
// Tests that file:// access checkbox shows up for extensions with activeTab // Tests that file:// access checkbox shows up for extensions with activeTab
// permission. See crbug.com/850643. // permission. See crbug.com/850643.
TEST_F(ExtensionInfoGeneratorUnitTest, ActiveTabFileUrls) { TEST_F(ExtensionInfoGeneratorUnitTest, ActiveTabFileUrls) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment