diff options
Diffstat (limited to 'embed/web-extension/ephy-web-extension.c')
| -rw-r--r-- | embed/web-extension/ephy-web-extension.c | 416 |
1 files changed, 380 insertions, 36 deletions
diff --git a/embed/web-extension/ephy-web-extension.c b/embed/web-extension/ephy-web-extension.c index 42918909c..d47c7f860 100644 --- a/embed/web-extension/ephy-web-extension.c +++ b/embed/web-extension/ephy-web-extension.c @@ -22,15 +22,22 @@ #include "ephy-web-extension.h" #include "ephy-debug.h" +#include "ephy-embed-form-auth.h" +#include "ephy-form-auth-data.h" #include "ephy-prefs.h" #include "ephy-settings.h" #include "ephy-web-dom-utils.h" #include "uri-tester.h" #include <gio/gio.h> +#include <libsoup/soup.h> #include <webkit2/webkit-web-extension.h> + +// FIXME: These global variables should be freed somehow. static UriTester *uri_tester; +static EphyFormAuthDataCache *form_auth_data_cache; +static GDBusConnection *dbus_connection; static const char introspection_xml[] = "<node>" @@ -50,10 +57,361 @@ static const char introspection_xml[] = " <arg type='s' name='uri' direction='out'/>" " <arg type='s' name='color' direction='out'/>" " </method>" + " <signal name='FormAuthDataSaveConfirmationRequired'>" + " <arg type='u' name='request_id' direction='out'/>" + " <arg type='t' name='page_id' direction='out'/>" + " <arg type='s' name='hostname' direction='out'/>" + " <arg type='s' name='username' direction='out'/>" + " </signal>" + " <method name='FormAuthDataSaveConfirmationResponse'>" + " <arg type='u' name='request_id' direction='in'/>" + " <arg type='b' name='should_store' direction='in'/>" + " </method>" " </interface>" "</node>"; -static WebKitWebPage* + +static gboolean +web_page_send_request (WebKitWebPage *web_page, + WebKitURIRequest *request, + WebKitURIResponse *redirected_response, + gpointer user_data) +{ + const char *request_uri; + const char *page_uri; + + /* FIXME: Instead of checking the setting here, connect to the signal + * or not depending on the setting. + */ + if (!g_settings_get_boolean (EPHY_SETTINGS_WEB, EPHY_PREFS_WEB_ENABLE_ADBLOCK)) + return FALSE; + + request_uri = webkit_uri_request_get_uri (request); + page_uri = webkit_web_page_get_uri (web_page); + + /* Always load the main resource. */ + if (g_strcmp0 (request_uri, page_uri) == 0) + return FALSE; + + return uri_tester_test_uri (uri_tester, request_uri, page_uri, AD_URI_CHECK_TYPE_OTHER); +} + +static GHashTable * +get_form_auth_data_save_requests (void) +{ + static GHashTable *form_auth_data_save_requests = NULL; + + if (!form_auth_data_save_requests) { + form_auth_data_save_requests = + g_hash_table_new_full (g_direct_hash, + g_direct_equal, + NULL, + (GDestroyNotify)g_object_unref); + } + + return form_auth_data_save_requests; +} + +static guint +form_auth_data_save_request_new_id (void) +{ + static guint form_auth_data_save_request_id = 0; + + return ++form_auth_data_save_request_id; +} + +static void +store_password (EphyEmbedFormAuth *form_auth) +{ + SoupURI *uri; + char *uri_str; + char *username_field_name = NULL; + char *username_field_value = NULL; + char *password_field_name = NULL; + char *password_field_value = NULL; + + g_object_get (ephy_embed_form_auth_get_username_node (form_auth), + "name", &username_field_name, + "value", &username_field_value, + NULL); + g_object_get (ephy_embed_form_auth_get_password_node (form_auth), + "name", &password_field_name, + "value", &password_field_value, + NULL); + + uri = ephy_embed_form_auth_get_uri (form_auth); + uri_str = soup_uri_to_string (uri, FALSE); + ephy_form_auth_data_store (uri_str, + username_field_name, + password_field_name, + username_field_value, + password_field_value, + NULL, NULL); + g_free (uri_str); + + /* Update internal caching */ + ephy_form_auth_data_cache_add (form_auth_data_cache, + uri->host, + username_field_name, + password_field_name, + username_field_value); + + g_free (username_field_name); + g_free (username_field_value); + g_free (password_field_name); + g_free (password_field_value); +} + +static void +request_decision_on_storing (EphyEmbedFormAuth *form_auth) +{ + char *username_field_value = NULL; + guint request_id; + SoupURI *uri; + GError *error = NULL; + + if (!dbus_connection) { + g_object_unref (form_auth); + return; + } + + request_id = form_auth_data_save_request_new_id (); + uri = ephy_embed_form_auth_get_uri (form_auth); + g_object_get (ephy_embed_form_auth_get_username_node (form_auth), + "value", &username_field_value, NULL); + + g_dbus_connection_emit_signal (dbus_connection, + NULL, + EPHY_WEB_EXTENSION_OBJECT_PATH, + EPHY_WEB_EXTENSION_INTERFACE, + "FormAuthDataSaveConfirmationRequired", + g_variant_new ("(utss)", + request_id, + ephy_embed_form_auth_get_page_id (form_auth), + uri ? uri->host : "", + username_field_value ? username_field_value : ""), + &error); + if (error) { + g_warning ("Error emitting signal FormAuthDataSaveConfirmationRequired: %s\n", error->message); + g_error_free (error); + } else { + g_hash_table_insert (get_form_auth_data_save_requests (), + GINT_TO_POINTER (request_id), + g_object_ref (form_auth)); + } + + g_free (username_field_value); + g_object_unref (form_auth); +} + +static void +should_store_cb (const char *username, + const char *password, + gpointer user_data) +{ + EphyEmbedFormAuth *form_auth = EPHY_EMBED_FORM_AUTH (user_data); + + if (username && password) { + char *username_field_value = NULL; + char *password_field_value = NULL; + + g_object_get (ephy_embed_form_auth_get_username_node (form_auth), + "value", &username_field_value, NULL); + g_object_get (ephy_embed_form_auth_get_password_node (form_auth), + "value", &password_field_value, NULL); + + /* FIXME: We use only the first result, for now; We need to do + * something smarter here */ + if (g_str_equal (username, username_field_value) && + g_str_equal (password, password_field_value)) { + LOG ("User/password already stored. Not asking about storing."); + } else { + LOG ("User/password not yet stored. Asking about storing."); + request_decision_on_storing (g_object_ref (form_auth)); + } + + g_free (username_field_value); + g_free (password_field_value); + } else { + LOG ("No result on query; asking whether we should store."); + request_decision_on_storing (g_object_ref (form_auth)); + } +} + +static gboolean +form_submitted_cb (WebKitDOMHTMLFormElement *dom_form, + WebKitDOMEvent *dom_event, + WebKitWebPage *web_page) +{ + EphyEmbedFormAuth *form_auth; + SoupURI *uri; + WebKitDOMNode *username_node = NULL; + WebKitDOMNode *password_node = NULL; + char *username_field_name = NULL; + char *password_field_name = NULL; + char *uri_str; + + if (!ephy_web_dom_utils_find_form_auth_elements (dom_form, &username_node, &password_node)) + return TRUE; + + /* EphyEmbedFormAuth takes ownership of the nodes */ + form_auth = ephy_embed_form_auth_new (web_page, username_node, password_node); + uri = ephy_embed_form_auth_get_uri (form_auth); + soup_uri_set_query (uri, NULL); + + g_object_get (username_node, "name", &username_field_name, NULL); + g_object_get (password_node, "name", &password_field_name, NULL); + uri_str = soup_uri_to_string (uri, FALSE); + + ephy_form_auth_data_query (uri_str, + username_field_name, + password_field_name, + should_store_cb, + form_auth, + (GDestroyNotify)g_object_unref); + + g_free (username_field_name); + g_free (password_field_name); + g_free (uri_str); + + return TRUE; +} + +static void +fill_form_cb (const char *username, + const char *password, + gpointer user_data) +{ + EphyEmbedFormAuth *form_auth = EPHY_EMBED_FORM_AUTH (user_data); + + if (username == NULL && password == NULL) { + LOG ("No result"); + return; + } + + LOG ("Found: user %s pass (hidden)", username); + g_object_set (ephy_embed_form_auth_get_username_node (form_auth), + "value", username, NULL); + g_object_set (ephy_embed_form_auth_get_password_node (form_auth), + "value", password, NULL); +} + +static gint +ephy_form_auth_data_compare (EphyFormAuthData *form_data, + EphyEmbedFormAuth *form_auth) +{ + char *username_field_name; + char *password_field_name; + gboolean retval; + + g_object_get (ephy_embed_form_auth_get_username_node (form_auth), + "name", &username_field_name, NULL); + g_object_get (ephy_embed_form_auth_get_password_node (form_auth), + "name", &password_field_name, NULL); + + retval = g_strcmp0 (username_field_name, form_data->form_username) == 0 && + g_strcmp0 (password_field_name, form_data->form_password) == 0; + + g_free (username_field_name); + g_free (password_field_name); + + return retval ? 0 : 1; +} + +static void +pre_fill_form (EphyEmbedFormAuth *form_auth) +{ + GSList *form_auth_data_list; + GSList *l; + EphyFormAuthData *form_data; + SoupURI *uri; + char *uri_str; + + uri = ephy_embed_form_auth_get_uri (form_auth); + if (!uri) + return; + + form_auth_data_list = ephy_form_auth_data_cache_get_list (form_auth_data_cache, uri->host); + l = g_slist_find_custom (form_auth_data_list, form_auth, (GCompareFunc)ephy_form_auth_data_compare); + if (!l) + return; + + form_data = (EphyFormAuthData *)l->data; + uri_str = soup_uri_to_string (uri, FALSE); + + ephy_form_auth_data_query (uri_str, + form_data->form_username, + form_data->form_password, + fill_form_cb, + g_object_ref (form_auth), + (GDestroyNotify)g_object_unref); + g_free (uri_str); +} + +static void +web_page_document_loaded (WebKitWebPage *web_page, + gpointer user_data) +{ + WebKitDOMHTMLCollection *forms = NULL; + WebKitDOMDocument *document = NULL; + gulong forms_n; + int i; + + if (!form_auth_data_cache || + !g_settings_get_boolean (EPHY_SETTINGS_MAIN, EPHY_PREFS_REMEMBER_PASSWORDS)) + return; + + document = webkit_web_page_get_dom_document (web_page); + forms = webkit_dom_document_get_forms (document); + forms_n = webkit_dom_html_collection_get_length (forms); + + if (forms_n == 0) { + LOG ("No forms found."); + g_object_unref(forms); + return; + } + + for (i = 0; i < forms_n; i++) { + WebKitDOMHTMLFormElement *form; + WebKitDOMNode *username_node = NULL; + WebKitDOMNode *password_node = NULL; + + form = WEBKIT_DOM_HTML_FORM_ELEMENT (webkit_dom_html_collection_item (forms, i)); + + /* We have a field that may be the user, and one for a password. */ + if (ephy_web_dom_utils_find_form_auth_elements (form, &username_node, &password_node)) { + EphyEmbedFormAuth *form_auth; + + LOG ("Hooking and pre-filling a form"); + + /* EphyEmbedFormAuth takes ownership of the nodes */ + form_auth = ephy_embed_form_auth_new (web_page, username_node, password_node); + webkit_dom_event_target_add_event_listener (WEBKIT_DOM_EVENT_TARGET (form), "submit", + G_CALLBACK (form_submitted_cb), FALSE, + web_page); + pre_fill_form (form_auth); + g_object_unref (form_auth); + } else + LOG ("No pre-fillable/hookable form found"); + } + + g_object_unref(forms); +} + +static void +web_page_created_callback (WebKitWebExtension *extension, + WebKitWebPage *web_page, + gpointer user_data) +{ + g_signal_connect_object (web_page, "send-request", + G_CALLBACK (web_page_send_request), + NULL, 0); + g_signal_connect_object (web_page, "document-loaded", + G_CALLBACK (web_page_document_loaded), + NULL, 0); +} + +static WebKitWebPage * get_webkit_web_page_or_return_dbus_error (GDBusMethodInvocation *invocation, WebKitWebExtension *web_extension, guint64 page_id) @@ -136,6 +494,21 @@ handle_method_call (GDBusConnection *connection, g_dbus_method_invocation_return_value (invocation, g_variant_new ("(bss)", result, uri ? uri : "", color ? color : "")); + } else if (g_strcmp0 (method_name, "FormAuthDataSaveConfirmationResponse") == 0) { + EphyEmbedFormAuth *form_auth; + guint request_id; + gboolean should_store; + GHashTable *requests = get_form_auth_data_save_requests (); + + g_variant_get (parameters, "(ub)", &request_id, &should_store); + + form_auth = g_hash_table_lookup (requests, GINT_TO_POINTER (request_id)); + if (!form_auth) + return; + + if (should_store) + store_password (form_auth); + g_hash_table_remove (requests, GINT_TO_POINTER (request_id)); } } @@ -154,6 +527,7 @@ bus_acquired_cb (GDBusConnection *connection, guint registration_id; GError *error = NULL; static GDBusNodeInfo *introspection_data = NULL; + if (!introspection_data) introspection_data = g_dbus_node_info_new_for_xml (introspection_xml, NULL); @@ -167,44 +541,12 @@ bus_acquired_cb (GDBusConnection *connection, if (!registration_id) { g_warning ("Failed to register object: %s\n", error->message); g_error_free (error); + } else { + dbus_connection = connection; + g_object_add_weak_pointer (G_OBJECT (connection), (gpointer *)&dbus_connection); } } -static gboolean -web_page_send_request (WebKitWebPage *web_page, - WebKitURIRequest *request, - WebKitURIResponse *redirected_response, - gpointer user_data) -{ - const char *request_uri; - const char *page_uri; - - /* FIXME: Instead of checking the setting here, connect to the signal - * or not depending on the setting. - */ - if (!g_settings_get_boolean (EPHY_SETTINGS_WEB, EPHY_PREFS_WEB_ENABLE_ADBLOCK)) - return FALSE; - - request_uri = webkit_uri_request_get_uri (request); - page_uri = webkit_web_page_get_uri (web_page); - - /* Always load the main resource. */ - if (g_strcmp0 (request_uri, page_uri) == 0) - return FALSE; - - return uri_tester_test_uri (uri_tester, request_uri, page_uri, AD_URI_CHECK_TYPE_OTHER); -} - -static void -web_page_created_callback (WebKitWebExtension *extension, - WebKitWebPage *web_page, - gpointer user_data) -{ - g_signal_connect_object (web_page, "send-request", - G_CALLBACK (web_page_send_request), - NULL, 0); -} - G_MODULE_EXPORT void webkit_web_extension_initialize (WebKitWebExtension *extension) { @@ -212,6 +554,8 @@ webkit_web_extension_initialize (WebKitWebExtension *extension) ephy_debug_init (); uri_tester = uri_tester_new (g_getenv ("EPHY_DOT_DIR")); + if (!g_getenv ("EPHY_PRIVATE_PROFILE")) + form_auth_data_cache = ephy_form_auth_data_cache_new (); g_signal_connect (extension, "page-created", G_CALLBACK (web_page_created_callback), |