Google Git
Sign in
chromium / chromium / src.git / b7f80c4fee4b7e05196756b484650b3a298805b5 / . / chrome / browser / supervised_user / supervised_user_navigation_throttle.cc
blob: 9009736d33f8c03cbd3b7aafaaab3f69988aee1f [file] [log] [blame]
// Copyright 2014 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/supervised_user/supervised_user_navigation_throttle.h"
#include "base/check_op.h"
#include "base/functional/bind.h"
#include "base/location.h"
#include "base/memory/ptr_util.h"
#include "base/metrics/histogram_functions.h"
#include "base/notreached.h"
#include "base/task/single_thread_task_runner.h"
#include "chrome/browser/profiles/profile.h"
#include "chrome/browser/supervised_user/supervised_user_browser_utils.h"
#include "chrome/browser/supervised_user/supervised_user_interstitial.h"
#include "chrome/browser/supervised_user/supervised_user_navigation_observer.h"
#include "chrome/browser/supervised_user/supervised_user_service.h"
#include "chrome/browser/supervised_user/supervised_user_service_factory.h"
#include "components/supervised_user/core/browser/supervised_user_url_filter.h"
#include "content/public/browser/navigation_handle.h"
#include "ui/base/page_transition_types.h"
#include "url/gurl.h"
namespace {
// These values corresponds to SupervisedUserSafetyFilterResult in
// tools/metrics/histograms/histograms.xml. If you change anything here, make
// sure to also update histograms.xml accordingly.
enum {
FILTERING_BEHAVIOR_ALLOW = 1,
FILTERING_BEHAVIOR_ALLOW_UNCERTAIN,
FILTERING_BEHAVIOR_BLOCK_DENYLIST,
FILTERING_BEHAVIOR_BLOCK_SAFESITES,
FILTERING_BEHAVIOR_BLOCK_MANUAL,
FILTERING_BEHAVIOR_BLOCK_DEFAULT,
FILTERING_BEHAVIOR_ALLOW_ALLOWLIST,
FILTERING_BEHAVIOR_MAX = FILTERING_BEHAVIOR_ALLOW_ALLOWLIST
};
const int kHistogramFilteringBehaviorSpacing = 100;
const int kHistogramPageTransitionMaxKnownValue =
static_cast<int>(ui::PAGE_TRANSITION_KEYWORD_GENERATED);
const int kHistogramPageTransitionFallbackValue =
kHistogramFilteringBehaviorSpacing - 1;
const int kHistogramMax = 800;
static_assert(kHistogramPageTransitionMaxKnownValue <
kHistogramPageTransitionFallbackValue,
"HistogramPageTransition MaxKnownValue must be < FallbackValue");
static_assert(FILTERING_BEHAVIOR_MAX * kHistogramFilteringBehaviorSpacing +
kHistogramPageTransitionFallbackValue <
kHistogramMax,
"Invalid HistogramMax value");
int GetHistogramValueForFilteringBehavior(
supervised_user::SupervisedUserURLFilter::FilteringBehavior behavior,
supervised_user::FilteringBehaviorReason reason,
bool uncertain) {
switch (behavior) {
case supervised_user::SupervisedUserURLFilter::ALLOW:
if (reason == supervised_user::FilteringBehaviorReason::ALLOWLIST) {
return FILTERING_BEHAVIOR_ALLOW_ALLOWLIST;
}
return uncertain ? FILTERING_BEHAVIOR_ALLOW_UNCERTAIN
: FILTERING_BEHAVIOR_ALLOW;
case supervised_user::SupervisedUserURLFilter::BLOCK:
switch (reason) {
case supervised_user::FilteringBehaviorReason::DENYLIST:
return FILTERING_BEHAVIOR_BLOCK_DENYLIST;
case supervised_user::FilteringBehaviorReason::ASYNC_CHECKER:
return FILTERING_BEHAVIOR_BLOCK_SAFESITES;
case supervised_user::FilteringBehaviorReason::ALLOWLIST:
NOTREACHED();
break;
case supervised_user::FilteringBehaviorReason::MANUAL:
return FILTERING_BEHAVIOR_BLOCK_MANUAL;
case supervised_user::FilteringBehaviorReason::DEFAULT:
return FILTERING_BEHAVIOR_BLOCK_DEFAULT;
case supervised_user::FilteringBehaviorReason::NOT_SIGNED_IN:
// Should never happen, only used for requests from Webview
NOTREACHED();
}
[[fallthrough]];
case supervised_user::SupervisedUserURLFilter::INVALID:
NOTREACHED();
}
return 0;
}
int GetHistogramValueForTransitionType(ui::PageTransition transition_type) {
int value =
static_cast<int>(ui::PageTransitionStripQualifier(transition_type));
if (0 <= value && value <= kHistogramPageTransitionMaxKnownValue)
return value;
NOTREACHED();
return kHistogramPageTransitionFallbackValue;
}
void RecordFilterResultEvent(
bool safesites_histogram,
supervised_user::SupervisedUserURLFilter::FilteringBehavior behavior,
supervised_user::FilteringBehaviorReason reason,
bool uncertain,
ui::PageTransition transition_type) {
int value =
GetHistogramValueForFilteringBehavior(behavior, reason, uncertain) *
kHistogramFilteringBehaviorSpacing +
GetHistogramValueForTransitionType(transition_type);
DCHECK_LT(value, kHistogramMax);
// Note: We can't pass in the histogram name as a parameter to this function
// because of how the macro works (look up the histogram on the first
// invocation and cache it in a static variable).
if (safesites_histogram)
base::UmaHistogramSparse("ManagedUsers.SafetyFilter", value);
else
base::UmaHistogramSparse("ManagedUsers.FilteringResult", value);
}
} // namespace
// static
std::unique_ptr<SupervisedUserNavigationThrottle>
SupervisedUserNavigationThrottle::MaybeCreateThrottleFor(
content::NavigationHandle* navigation_handle) {
Profile* profile = Profile::FromBrowserContext(
navigation_handle->GetWebContents()->GetBrowserContext());
SupervisedUserService* supervised_user_service =
SupervisedUserServiceFactory::GetForProfile(profile);
if (!supervised_user_service ||
!supervised_user_service->IsURLFilteringEnabled()) {
return nullptr;
}
// Can't use std::make_unique because the constructor is private.
return base::WrapUnique(
new SupervisedUserNavigationThrottle(navigation_handle));
}
SupervisedUserNavigationThrottle::SupervisedUserNavigationThrottle(
content::NavigationHandle* navigation_handle)
: NavigationThrottle(navigation_handle),
url_filter_(
SupervisedUserServiceFactory::GetForProfile(
Profile::FromBrowserContext(
navigation_handle->GetWebContents()->GetBrowserContext()))
->GetURLFilter()),
deferred_(false),
behavior_(supervised_user::SupervisedUserURLFilter::INVALID) {}
SupervisedUserNavigationThrottle::~SupervisedUserNavigationThrottle() {}
content::NavigationThrottle::ThrottleCheckResult
SupervisedUserNavigationThrottle::CheckURL() {
deferred_ = false;
DCHECK_EQ(supervised_user::SupervisedUserURLFilter::INVALID, behavior_);
// We do not yet support prerendering for supervised users.
if (navigation_handle()->IsInPrerenderedMainFrame()) {
return NavigationThrottle::CANCEL;
}
GURL url = navigation_handle()->GetURL();
bool skip_manual_parent_filter =
supervised_user::ShouldContentSkipParentAllowlistFiltering(
navigation_handle()->GetWebContents()->GetOutermostWebContents());
bool got_result = false;
if (navigation_handle()->IsInPrimaryMainFrame()) {
got_result = url_filter_->GetFilteringBehaviorForURLWithAsyncChecks(
url,
base::BindOnce(&SupervisedUserNavigationThrottle::OnCheckDone,
weak_ptr_factory_.GetWeakPtr(), url),
skip_manual_parent_filter);
} else {
got_result = url_filter_->GetFilteringBehaviorForSubFrameURLWithAsyncChecks(
url, navigation_handle()->GetWebContents()->GetVisibleURL(),
base::BindOnce(&SupervisedUserNavigationThrottle::OnCheckDone,
weak_ptr_factory_.GetWeakPtr(), url));
}
DCHECK_EQ(got_result,
behavior_ != supervised_user::SupervisedUserURLFilter::INVALID);
// If we got a "not blocked" result synchronously, don't defer.
deferred_ = !got_result ||
(behavior_ == supervised_user::SupervisedUserURLFilter::BLOCK);
if (got_result)
behavior_ = supervised_user::SupervisedUserURLFilter::INVALID;
if (deferred_)
return NavigationThrottle::DEFER;
return NavigationThrottle::PROCEED;
}
void SupervisedUserNavigationThrottle::ShowInterstitial(
const GURL& url,
supervised_user::FilteringBehaviorReason reason) {
// Don't show interstitial synchronously - it doesn't seem like a good idea to
// show an interstitial right in the middle of a call into a
// NavigationThrottle. This also lets OnInterstitialResult to be invoked
// synchronously, once a callback is passed into the
// SupervisedUserNavigationObserver.
base::SingleThreadTaskRunner::GetCurrentDefault()->PostTask(
FROM_HERE,
base::BindOnce(&SupervisedUserNavigationThrottle::ShowInterstitialAsync,
weak_ptr_factory_.GetWeakPtr(), reason));
}
void SupervisedUserNavigationThrottle::ShowInterstitialAsync(
supervised_user::FilteringBehaviorReason reason) {
// May not yet have been set when ShowInterstitial was called, but should have
// been set by the time this is invoked.
DCHECK(deferred_);
SupervisedUserNavigationObserver::OnRequestBlocked(
navigation_handle()->GetWebContents(), navigation_handle()->GetURL(),
reason, navigation_handle()->GetNavigationId(),
navigation_handle()->GetFrameTreeNodeId(),
base::BindRepeating(
&SupervisedUserNavigationThrottle::OnInterstitialResult,
weak_ptr_factory_.GetWeakPtr()));
}
content::NavigationThrottle::ThrottleCheckResult
SupervisedUserNavigationThrottle::WillStartRequest() {
return CheckURL();
}
content::NavigationThrottle::ThrottleCheckResult
SupervisedUserNavigationThrottle::WillRedirectRequest() {
return CheckURL();
}
const char* SupervisedUserNavigationThrottle::GetNameForLogging() {
return "SupervisedUserNavigationThrottle";
}
void SupervisedUserNavigationThrottle::OnCheckDone(
const GURL& url,
supervised_user::SupervisedUserURLFilter::FilteringBehavior behavior,
supervised_user::FilteringBehaviorReason reason,
bool uncertain) {
DCHECK_EQ(supervised_user::SupervisedUserURLFilter::INVALID, behavior_);
// If we got a result synchronously, pass it back to ShowInterstitialIfNeeded.
if (!deferred_)
behavior_ = behavior;
reason_ = reason;
ui::PageTransition transition = navigation_handle()->GetPageTransition();
RecordFilterResultEvent(false, behavior, reason, uncertain, transition);
// If both the static denylist and the async checker are enabled, also record
// SafeSites-only UMA events.
if (url_filter_->HasDenylist() && url_filter_->HasAsyncURLChecker() &&
(reason == supervised_user::FilteringBehaviorReason::ASYNC_CHECKER ||
reason == supervised_user::FilteringBehaviorReason::DENYLIST)) {
RecordFilterResultEvent(true, behavior, reason, uncertain, transition);
}
if (navigation_handle()->IsInPrimaryMainFrame()) {
// Update navigation observer about the navigation state of the main frame.
auto* navigation_observer =
SupervisedUserNavigationObserver::FromWebContents(
navigation_handle()->GetWebContents());
if (navigation_observer)
navigation_observer->UpdateMainFrameFilteringStatus(behavior, reason);
}
if (behavior == supervised_user::SupervisedUserURLFilter::BLOCK) {
ShowInterstitial(url, reason);
} else if (deferred_) {
Resume();
}
}
void SupervisedUserNavigationThrottle::OnInterstitialResult(
CallbackActions action,
bool already_sent_request,
bool is_main_frame) {
switch (action) {
case kCancelNavigation: {
CancelDeferredNavigation(CANCEL);
break;
}
case kCancelWithInterstitial: {
Profile* profile = Profile::FromBrowserContext(
navigation_handle()->GetWebContents()->GetBrowserContext());
std::string interstitial_html =
SupervisedUserInterstitial::GetHTMLContents(
SupervisedUserServiceFactory::GetForProfile(profile),
profile->GetPrefs(), reason_, already_sent_request,
is_main_frame);
CancelDeferredNavigation(content::NavigationThrottle::ThrottleCheckResult(
CANCEL, net::ERR_BLOCKED_BY_CLIENT, interstitial_html));
}
}
}