1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
content / public / browser / first_party_sets_handler.h [blame]
// Copyright 2022 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CONTENT_PUBLIC_BROWSER_FIRST_PARTY_SETS_HANDLER_H_
#define CONTENT_PUBLIC_BROWSER_FIRST_PARTY_SETS_HANDLER_H_
#include <optional>
#include <set>
#include <string>
#include "base/files/file.h"
#include "base/functional/callback.h"
#include "base/types/expected.h"
#include "base/values.h"
#include "base/version.h"
#include "content/common/content_export.h"
#include "third_party/abseil-cpp/absl/types/variant.h"
namespace net {
class FirstPartySetsCacheFilter;
class FirstPartySetsContextConfig;
class FirstPartySetEntry;
class FirstPartySetMetadata;
class SchemefulSite;
} // namespace net
namespace content {
class BrowserContext;
// The FirstPartySetsHandler class allows an embedder to provide
// First-Party Sets inputs from custom sources.
class CONTENT_EXPORT FirstPartySetsHandler {
public:
enum class ParseErrorType {
// The set definition was not the correct data type.
kInvalidType,
// A string in the set could not be parsed as a URL or origin.
kInvalidOrigin,
// An origin in the set was specified using a scheme other than HTTPS.
kNonHttpsScheme,
// A origin in the set did not use a valid a registrable domain.
kInvalidDomain,
// The set had no members.
kSingletonSet,
// The set was non-disjoint with other pre-existing sets.
kNonDisjointSets,
// The set repeated the same domain more than once in its definition.
kRepeatedDomain,
};
enum class ParseWarningType {
// The "ccTLDs" map has a key that isn't a canonical site (present in the
// set).
kCctldKeyNotCanonical,
// The "ccTLDs" maps a site that differs from its canonical key beyond just
// TLD.
kAliasNotCctldVariant,
};
// Contains metadata about an <T> issue for later use in outputting
// descriptive messages about the issue.
template <typename T>
class IssueWithMetadata {
public:
IssueWithMetadata(
const T& issue_type,
const std::vector<absl::variant<int, std::string>>& issue_path)
: issue_type_(issue_type), issue_path_(issue_path) {}
~IssueWithMetadata() = default;
IssueWithMetadata(const IssueWithMetadata<T>&) = default;
bool operator==(const IssueWithMetadata<T>& other) const = default;
// Inserts path_prefix at the beginning of the path stored for this issue.
void PrependPath(
const std::vector<absl::variant<int, std::string>>& path_prefix) {
issue_path_.insert(issue_path_.begin(), path_prefix.begin(),
path_prefix.end());
}
// The type of issue that was found when parsing the policy sets.
T type() const { return issue_type_; }
// The path within the policy that was being parsed when the issue was
// found. Based on the policy::PolicyErrorPath type defined in
// components/policy.
std::vector<absl::variant<int, std::string>> path() const {
return issue_path_;
}
private:
T issue_type_;
std::vector<absl::variant<int, std::string>> issue_path_;
};
using ParseError = IssueWithMetadata<ParseErrorType>;
using ParseWarning = IssueWithMetadata<ParseWarningType>;
virtual ~FirstPartySetsHandler() = default;
// Overrides the singleton with caller-owned |test_instance|. Callers in tests
// are responsible for resetting this to null on cleanup.
static void SetInstanceForTesting(FirstPartySetsHandler* test_instance);
// Returns the singleton instance.
static FirstPartySetsHandler* GetInstance();
// Validates the First-Party Sets Overrides enterprise policy in `policy`.
// This function returns whether the validation was successful (or an error if
// the policy was invalid), and a list of warnings. Warnings are returned even
// if the policy was invalid, in order to surface as many issues as possible
// at once.
//
// This validation only checks that all sets in this policy are valid
// First-Party Sets and disjoint from each other. It doesn't require
// disjointness with other sources, such as the public sets, since this policy
// will be used override First-Party Sets in those sources.
static std::pair<base::expected<void, ParseError>, std::vector<ParseWarning>>
ValidateEnterprisePolicy(const base::Value::Dict& policy);
// Returns whether First-Party Sets is enabled.
//
// Embedders can use this method to guard First-Party Sets related changes.
virtual bool IsEnabled() const = 0;
// Sets the First-Party Sets data from `sets_file` to initialize the
// FirstPartySets instance. `sets_file` is expected to contain a sequence of
// newline-delimited JSON records. Each record is a set declaration in the
// format specified here: https://github.com/privacycg/first-party-sets.
// `version` is the version of the sets file used for comparison. If the
// file changed between browser runs, those files must have different
// associated `base::Version`.
//
// Embedder should call this method as early as possible during browser
// startup if First-Party Sets are enabled, since no First-Party Sets queries
// are answered until initialization is complete.
//
// If this is called when First-Party Sets are enabled, or the embedder has
// not indicated it will provide the public First-Party Sets, the call is
// ignored.
//
// If this is called more than once, all but the first call are ignored.
virtual void SetPublicFirstPartySets(const base::Version& version,
base::File sets_file) = 0;
// Looks up `site` in the global First-Party Sets and `config` to find its
// associated FirstPartySetEntry.
//
// This will return nullopt if:
// - First-Party Sets is disabled or
// - the list of First-Party Sets isn't initialized yet or
// - `site` isn't in the global First-Party Sets or `config`
virtual std::optional<net::FirstPartySetEntry> FindEntry(
const net::SchemefulSite& site,
const net::FirstPartySetsContextConfig& config) const = 0;
// Computes a representation of the changes that need to be made to the
// browser's list of First-Party Sets to respect the `policy` value of the
// First-Party Sets Overrides enterprise policy. If `policy` is nullptr,
// `callback` is immediately invoked with an empty config.
//
// Otherwise, the context config will be returned via `callback` since the
// context config must be computed after the list of First-Party Sets is
// initialized which occurs asynchronously.
virtual void GetContextConfigForPolicy(
const base::Value::Dict* policy,
base::OnceCallback<void(net::FirstPartySetsContextConfig)> callback) = 0;
// Clear site state of sites that have a FPS membership change for the browser
// context represented by `browser_context_id`. Sites joining FPSs for the
// first time will not be cleared.
//
// `browser_context_getter` is needed to get a BrowsingDataRemover to handle
// the clearing work. `context_config` should be the return value from
// `GetContextConfigForPolicy` if an Overrides enterprise policy is provided,
// or null if one is not provided. `callback` will be invoked once the
// clearing is done.
//
// Embedder must call this before First-Party Sets queries can be answered.
//
// If the First-Party Sets feature is disabled, this is a no-op.
virtual void ClearSiteDataOnChangedSetsForContext(
base::RepeatingCallback<BrowserContext*()> browser_context_getter,
const std::string& browser_context_id,
net::FirstPartySetsContextConfig context_config,
base::OnceCallback<void(net::FirstPartySetsContextConfig,
net::FirstPartySetsCacheFilter)> callback) = 0;
// Computes the First-Party Set metadata related to the given request context,
// and invokes `callback` with the result.
//
// This may invoke `callback` synchronously.
virtual void ComputeFirstPartySetMetadata(
const net::SchemefulSite& site,
const net::SchemefulSite* top_frame_site,
const net::FirstPartySetsContextConfig& config,
base::OnceCallback<void(net::FirstPartySetMetadata)> callback) = 0;
// Synchronously iterates over all the effective entries (i.e. anything that
// could be returned by `FindEntry` given the global First-Party Sets and
// `config`, including the manual set, policy sets, and aliases), and invokes
// `f` on each entry formed as a net::SchemefulSite and a
// net::FirstPartySetEntry. If any of these invocations returns false, then
// ForEachEffectiveSetEntry stops iterating over the entries and returns false
// to its caller. Otherwise, if each call to `f` returns true, then
// ForEachEffectiveSetEntry returns true.
//
// Also returns false if First-Party Sets was not yet initialized. No
// guarantees are made re: iteration order.
virtual bool ForEachEffectiveSetEntry(
const net::FirstPartySetsContextConfig& config,
base::FunctionRef<bool(const net::SchemefulSite&,
const net::FirstPartySetEntry&)> f) const = 0;
};
} // namespace content
#endif // CONTENT_PUBLIC_BROWSER_FIRST_PARTY_SETS_HANDLER_H_