Skip to content

GitLab

T
tangled
Commit af657e5d authored by Ken Buchanan's avatar Ken Buchanan Committed by Chromium LUCI CQ
Browse files
Options

[WebID] Improvements to the IDP network requests 

This change:
- Appends a 'Sec-WebID' header to flag what kind of traffic this is to
the IDP and guard against CSRF.
- Restricts WebID to potentially trustworthy origins rather than URLs
- Fixes a crash in OnWellKnownLoaded

Bug: 1141125
Change-Id: I13d55c67ee79a8060f1947baec778350b4f5b872
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2579823
Commit-Queue: Ken Buchanan <kenrb@chromium.org>
Reviewed-by: default avatarMajid Valipour <majidvp@chromium.org>
Cr-Commit-Position: refs/heads/master@{#835051}
parent 203211e6
Hide whitespace changes
Inline Side-by-side
Showing with 12 additions and 3 deletions
content/browser/webid/idp_network_request_manager.cc
View file @ af657e5d
...@@ -34,6 +34,11 @@ constexpr char kIdTokenKey[] = "id_token"; ...@@ -34,6 +34,11 @@ constexpr char kIdTokenKey[] = "id_token";
constexpr char kAcceptMimeType[] = "application/json"; constexpr char kAcceptMimeType[] = "application/json";
// `Sec-` prefix makes this a forbidden header and cannot be added by
// JavaScript.
// See https://fetch.spec.whatwg.org/#forbidden-header-name
constexpr char kSecWebIDHeader[] = "Sec-WebID";
// 1 MiB is an arbitrary upper bound that should account for any reasonable // 1 MiB is an arbitrary upper bound that should account for any reasonable
// response size that is a part of this protocol. // response size that is a part of this protocol.
constexpr int maxResponseSizeInKiB = 1024; constexpr int maxResponseSizeInKiB = 1024;
...@@ -83,7 +88,7 @@ std::unique_ptr<IdpNetworkRequestManager> IdpNetworkRequestManager::Create( ...@@ -83,7 +88,7 @@ std::unique_ptr<IdpNetworkRequestManager> IdpNetworkRequestManager::Create(
const GURL& provider, const GURL& provider,
RenderFrameHost* host) { RenderFrameHost* host) {
// WebID is restricted to secure contexts. // WebID is restricted to secure contexts.
if (!network::IsUrlPotentiallyTrustworthy(provider)) if (!network::IsOriginPotentiallyTrustworthy(url::Origin::Create(provider)))
return nullptr; return nullptr;
return std::make_unique<IdpNetworkRequestManager>(provider, host); return std::make_unique<IdpNetworkRequestManager>(provider, host);
...@@ -165,6 +170,10 @@ void IdpNetworkRequestManager::SendSigninRequest( ...@@ -165,6 +170,10 @@ void IdpNetworkRequestManager::SendSigninRequest(
resource_request->site_for_cookies = site_for_cookies; resource_request->site_for_cookies = site_for_cookies;
resource_request->headers.SetHeader(net::HttpRequestHeaders::kAccept, resource_request->headers.SetHeader(net::HttpRequestHeaders::kAccept,
kAcceptMimeType); kAcceptMimeType);
// This header is present mostly for CSRF resistance, but the value could
// provide a protocol version. This might change if something more useful
// is needed.
resource_request->headers.SetHeader(kSecWebIDHeader, "1.0");
resource_request->credentials_mode = resource_request->credentials_mode =
network::mojom::CredentialsMode::kInclude; network::mojom::CredentialsMode::kInclude;
resource_request->trusted_params = network::ResourceRequest::TrustedParams(); resource_request->trusted_params = network::ResourceRequest::TrustedParams();
...@@ -187,12 +196,12 @@ void IdpNetworkRequestManager::SendSigninRequest( ...@@ -187,12 +196,12 @@ void IdpNetworkRequestManager::SendSigninRequest(
void IdpNetworkRequestManager::OnWellKnownLoaded( void IdpNetworkRequestManager::OnWellKnownLoaded(
std::unique_ptr<std::string> response_body) { std::unique_ptr<std::string> response_body) {
url_loader_.reset();
int response_code = -1; int response_code = -1;
if (url_loader_->ResponseInfo() && url_loader_->ResponseInfo()->headers) if (url_loader_->ResponseInfo() && url_loader_->ResponseInfo()->headers)
response_code = url_loader_->ResponseInfo()->headers->response_code(); response_code = url_loader_->ResponseInfo()->headers->response_code();
url_loader_.reset();
if (response_code == net::HTTP_NOT_FOUND) { if (response_code == net::HTTP_NOT_FOUND) {
std::move(idp_well_known_callback_) std::move(idp_well_known_callback_)
.Run(FetchStatus::kWebIdNotSupported, std::string()); .Run(FetchStatus::kWebIdNotSupported, std::string());
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment