1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
content / public / browser / file_url_loader.h [blame]
// Copyright 2017 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CONTENT_PUBLIC_BROWSER_FILE_URL_LOADER_H_
#define CONTENT_PUBLIC_BROWSER_FILE_URL_LOADER_H_
#include <memory>
#include "base/memory/ref_counted.h"
#include "content/common/content_export.h"
#include "mojo/public/cpp/bindings/pending_receiver.h"
#include "mojo/public/cpp/bindings/pending_remote.h"
#include "mojo/public/cpp/system/filtered_data_source.h"
#include "net/http/http_response_headers.h"
#include "services/network/public/mojom/url_loader.mojom.h"
#include "services/network/public/mojom/url_loader_factory.mojom.h"
namespace network::mojom {
class URLLoaderFactory;
}
namespace content {
class SharedCorsOriginAccessList;
class CONTENT_EXPORT FileURLLoaderObserver
: public mojo::FilteredDataSource::Filter {
public:
FileURLLoaderObserver() = default;
FileURLLoaderObserver(const FileURLLoaderObserver&) = delete;
FileURLLoaderObserver& operator=(const FileURLLoaderObserver&) = delete;
~FileURLLoaderObserver() override {}
virtual void OnStart() {}
virtual void OnSeekComplete(int64_t result) {}
};
// Helper to create a self-owned URLLoader instance which fulfills |request|
// using the contents of the file at |path|. The URL in |request| must be a
// file:// URL. The *optionally* supplied |observer| will be called to report
// progress during the file loading.
//
// Note that this does not restrict filesystem access *in any way*, so if the
// file at |path| is accessible to the browser, it will be loaded and used to
// the request.
//
// The URLLoader created by this function does *not* automatically follow
// filesytem links (e.g. Windows shortcuts) or support directory listing.
// A directory path will always yield a FILE_NOT_FOUND network error.
//
// TODO(lukasza): Responding with file contents is (a little bit, not quite)
// duplicated across FileURLLoaderFactory, ContentURLLoaderFactory and
// ExtensionURLLoaderFactory. Consider moving file-handling functionality
// into a shared base class of network::mojom::URLLoaderFactory (similarly to
// how SelfDeletingURLLoaderFactory provides lifetime management for its derived
// classes).
CONTENT_EXPORT void CreateFileURLLoaderBypassingSecurityChecks(
const network::ResourceRequest& request,
mojo::PendingReceiver<network::mojom::URLLoader> loader,
mojo::PendingRemote<network::mojom::URLLoaderClient> client,
std::unique_ptr<FileURLLoaderObserver> observer,
bool allow_directory_listing,
scoped_refptr<net::HttpResponseHeaders> extra_response_headers = nullptr);
// Helper to create a FileURLLoaderFactory. This exposes the ability to load
// file:// URLs through SimpleURLLoader to non-content classes.
//
// When non-empty, |profile_path| is used to allowlist specific directories on
// ChromeOS and Android. It is checked by
// ContentBrowserClient::IsFileAccessAllowed.
// |shared_cors_origin_access_list| can be specified if caller wants only
// listed access pattern to be permitted for CORS requests. If nullptr is
// passed, all file accesses are permitted even for CORS requests. This list
// does not affect no-cors requests.
CONTENT_EXPORT
mojo::PendingRemote<network::mojom::URLLoaderFactory>
CreateFileURLLoaderFactory(
const base::FilePath& profile_path,
scoped_refptr<SharedCorsOriginAccessList> shared_cors_origin_access_list);
} // namespace content
#endif // CONTENT_PUBLIC_BROWSER_FILE_URL_LOADER_H_