Cookies #13126
Cookies #13126
Conversation
components/content_settings/core/browser/brave_content_settings_pref_provider.cc
Show resolved
Hide resolved
| ContentSetting general_setting = CONTENT_SETTING_DEFAULT; | ||
| ContentSetting first_party_setting = CONTENT_SETTING_DEFAULT; | ||
| }; | ||
|
|
||
| // TODO(bridiver) - convert cookie settings to ContentSettingsType::COOKIES |
There was a problem hiding this comment.
I don't think this comment is relevant anymore since we can't use the upstream 3p setting to eliminate having two rules for block 3p
|
@goodov ptal? |
| }; | ||
| const auto cookie_is_found_in = | ||
| [&rule_matcher](const std::vector<Rule>& rules) { | ||
| return rules.cend() != base::ranges::find_if(rules, rule_matcher); |
| for (auto&& r : rules) { | ||
| cookie_rules_[incognito].SetValue( | ||
| r.primary_pattern, r.secondary_pattern, ContentSettingsType::COOKIES, | ||
| base::Time(), std::move(r.value), {r.expiration, r.session_model}); |
There was a problem hiding this comment.
is base::Time() alright? won't it break some "delete all data for 1 hour" logic?
| brave_shields::ControlType::ALLOW, url); | ||
| } | ||
|
|
||
| void BlockThirdPartyCookies(const GURL url) { | ||
| brave_shields::SetCookieControlType( | ||
| content_settings(), brave_shields::ControlType::BLOCK_THIRD_PARTY, url); | ||
| content_settings(), browser()->profile()->GetPrefs(), | ||
| brave_shields::ControlType::BLOCK_THIRD_PARTY, url); | ||
| } | ||
|
|
||
| void BlockCookies(const GURL url) { |
There was a problem hiding this comment.
const GURL url -> const GURL& url everywhere in this file
| {"*://[*.]", | ||
| net::registry_controlled_domains::GetDomainAndRegistry( | ||
| host_pattern.GetHost(), | ||
| net::registry_controlled_domains::INCLUDE_PRIVATE_REGISTRIES), |
There was a problem hiding this comment.
this will return an empty string if the host is an IP address or if a registry is not found (ipfs cases?).
| // first-party rule: | ||
| map->SetContentSettingCustomScope(primary_pattern, host_pattern, | ||
| ContentSettingsType::BRAVE_COOKIES, | ||
| GetDefaultAllowFromControlType(type)); |
There was a problem hiding this comment.
a good comment for all cases here would be nice. currently it's unclear why we come up with primary_pattern and not stick with host_pattern only. why we use GetDefaultBlockFromControlType, GetDefaultAllowFromControlType, CONTENT_SETTING_DEFAULT in different Sets?
|
|
||
| RecordShieldsSettingChanged(local_state); | ||
| } | ||
|
|
||
| struct CookieRules { |
There was a problem hiding this comment.
is this an internal helper only? anonymous namespace then.
also should be a class with private members modifiable only with Merge.
| namespace content_settings { | ||
| class CookieSettings; | ||
| } | ||
|
|
||
| namespace brave_shields { | ||
|
|
||
| // sync brave plugin cookie settings with chromium cookie prefs |
There was a problem hiding this comment.
it doesn't do anything like that anymore.
| pref_change_registrar_.Add( | ||
| CookiePrefService::CookiePrefService(PrefService* prefs) { | ||
| DCHECK(prefs); | ||
| prefs->SetDefaultPrefValue( |
There was a problem hiding this comment.
I think maybe we just should drop this class and do this with a patch or in some other place (maybe even create such place to be able to override any default chromium prefs in future).
| for (const auto& shield_rule : shield_rules) { | ||
| auto primary_compare = | ||
| shield_rule.primary_pattern.Compare(cookie_rule.primary_pattern); | ||
| shield_rule.primary_pattern.Compare(cookie_rule.secondary_pattern); | ||
| // TODO(bridiver) - verify that SUCCESSOR is correct and not PREDECESSOR |
There was a problem hiding this comment.
what about this and next TODO? do they still make sense or we can drop them?
| .primary_pattern = ContentSettingsPattern::FromString(base::StrCat( | ||
| {"*://[*.]", | ||
| net::registry_controlled_domains::GetDomainAndRegistry( | ||
| new_rule.secondary_pattern.GetHost(), |
boocmp
force-pushed
the
cookies
branch
2 times, most recently
from
3cf6935
to
d90d07f
Compare
boocmp
force-pushed
the
cookies
branch
2 times, most recently
from
f93d923
to
34b1f12
Compare
boocmp
force-pushed
the
cookies
branch
2 times, most recently
from
5221a90
to
53146eb
Compare
| if (old_rule.primary_pattern == wildcard && | ||
| (old_rule.secondary_pattern == wildcard || | ||
| old_rule.secondary_pattern == first_party)) { | ||
| // Remove default rules from BRAVE_COKIES because it's already mapped to |
|
|
||
| if (content_type == ContentSettingsType::COOKIES) { | ||
| if (cookie_is_found_in(brave_shield_down_rules_[off_the_record_])) { | ||
| // Don't do anything with the generated Shiels-down rules. Unremovable |
|
@boocmp pls wait for the channel migration, then merge to 1.42 |
… consistent state. 2. The Brave shields settings now have a higher priority than Chromium settings. 3. If Brave shield is down, the cookie settings fallback to Chromium settings. 4. The Brave shields cookie settings can be edited on the cookie settings page. 5. Fixed the reverse order of patterns in BRAVE_COOKIES. 6. Default rules [*,*] was removed from BRAVE_COOKIES.
|
|
||
| ContentSetting fp_setting = map->GetContentSetting( | ||
| url, GURL("https://firstParty/"), ContentSettingsType::BRAVE_COOKIES); | ||
| auto result = CookieRules::Get(map, url, ContentSettingsType::COOKIES); |
There was a problem hiding this comment.
This should be BRAVE_COOKIES because otherwise the control will show the combined value of shield and setting cookies (incorrectly in many cases) and not be an accurate reflection of the actual setting. See brave/brave-browser#24321
Resolves brave/brave-browser#8604,
Submitter Checklist:
QA/YesorQA/No;release-notes/includeorrelease-notes/exclude;OS/...) to the associated issuenpm run test -- brave_browser_tests,npm run test -- brave_unit_tests,npm run lint,npm run gn_check,npm run tslintgit rebase master(if needed)Reviewer Checklist:
gnAfter-merge Checklist:
changes has landed on
Test Plan:
https://drive.google.com/file/d/1nZhhHR0rOsfZzHa-C7TnIdpggOtkHwKO/view?usp=sharing
https://drive.google.com/file/d/1ZguyenegGPPJ7bXm4aR-o9sKSebnfe-b/view?usp=sharing
check_list_1-17.txt