| blob | f234958010d4d70fdd33c2323485f5fedc8ca36a |
1 /* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
2 /* This Source Code Form is subject to the terms of the Mozilla Public
3 * License, v. 2.0. If a copy of the MPL was not distributed with this
4 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
6 /**
7 * This file contains an interface to the Permission Manager,
8 * used to persistenly store permissions for different object types (cookies,
9 * images etc) on a site-by-site basis.
10 *
11 * This service broadcasts the following notification when the permission list
12 * is changed:
13 *
14 * topic : "perm-changed" (PERM_CHANGE_NOTIFICATION)
15 * broadcast whenever the permission list changes in some way. there
16 * are four possible data strings for this notification; one
17 * notification will be broadcast for each change, and will involve
18 * a single permission.
19 * subject: an nsIPermission interface pointer representing the permission object
20 * that changed.
21 * data : "deleted"
22 * a permission was deleted. the subject is the deleted permission.
23 * "added"
24 * a permission was added. the subject is the added permission.
25 * "changed"
26 * a permission was changed. the subject is the new permission.
27 * "cleared"
28 * the entire permission list was cleared. the subject is null.
29 */
31 #include "nsISupports.idl"
38 {
39 /**
40 * Predefined return values for the testPermission method and for
41 * the permission param of the add method
42 * NOTE: UNKNOWN_ACTION (0) is reserved to represent the
43 * default permission when no entry is found for a host, and
44 * should not be used by consumers to indicate otherwise.
45 */
51 /**
52 * Predefined expiration types for permissions. Permissions can be permanent
53 * (never expire), expire at the end of the session, or expire at a specified
54 * time. Permissions that expire at the end of a session may also have a
55 * specified expiration time.
56 *
57 * EXPIRE_POLICY is a special expiration status. It is set when the permission
58 * is set by reading an enterprise policy. These permissions cannot be overridden.
59 */
66 /**
67 * Get all custom permissions for a given nsIPrincipal. This will return an
68 * enumerator of all permissions which are not set to default and which
69 * belong to the matching principal of the given nsIPrincipal.
70 *
71 * @param principal the URI to get all permissions for
72 */
75 /**
76 * Get all custom permissions of a specific type, specified with a prefix
77 * string. This will return an array of all permissions which are not set to
78 * default. Also the passed type argument is either equal to or a prefix of
79 * the type of the returned permissions.
80 *
81 * @param prefix the type prefix string
82 */
86 /**
87 * Get all custom permissions whose type exactly match one of the types defined
88 * in the passed array argument.
89 * This will return an array of all permissions which are not set to default.
90 *
91 * @param types an array of case-sensitive ASCII strings, identifying the
92 * permissions to be matched.
93 */
96 /**
97 * Get all custom permissions of a specific type and that were modified after
98 * the specified date. This will return an array of all permissions which are
99 * not set to default.
100 *
101 * @param type a case-sensitive ASCII string, identifying the permission.
102 * @param since a unix timestamp representing the number of milliseconds from
103 * Jan 1, 1970 00:00:00 UTC.
104 */
107 /**
108 * Add permission information for a given principal.
109 * It is internally calling the other add() method using the nsIURI from the
110 * principal.
111 * Passing a system principal will be a no-op because they will always be
112 * granted permissions.
113 */
119 /**
120 * Add permanent permission information for a given principal in private
121 * browsing.
122 *
123 * Normally permissions in private browsing are cleared at the end of the
124 * session, this method allows you to override this behavior and set
125 * permanent permissions.
126 *
127 * WARNING: setting permanent permissions _will_ leak data in private
128 * browsing. Only use if you understand the consequences and trade-offs. If
129 * you are unsure, |addFromPrincipal| is very likely what you want to use
130 * instead.
131 */
136 /**
137 * Remove permission information for a given principal.
138 * This is internally calling remove() with the host from the principal's URI.
139 * Passing system principal will be a no-op because we never add them to the
140 * database.
141 */
144 /**
145 * Remove the given permission from the permission manager.
146 *
147 * @param perm a permission obtained from the permission manager.
148 */
151 /**
152 * Clear permission information for all websites.
153 */
156 /**
157 * Clear all permission information added since the specified time.
158 */
161 /**
162 * Clear all permissions of the passed type.
163 */
166 /**
167 * Clear all permissions of the passed type added since the specified time.
168 * @param type a case-sensitive ASCII string, identifying the permission.
169 * @param since a unix timestamp representing the number of milliseconds from
170 * Jan 1, 1970 00:00:00 UTC.
171 */
174 /**
175 * Test whether the principal has the permission to perform a given action.
176 * System principals will always have permissions granted.
177 * This function will perform a pref lookup to permissions.default.<type>
178 * if the specific permission type is part of the whitelist for that functionality.
179 */
183 /**
184 * Test whether the principal has the permission to perform a given action.
185 * This requires an exact hostname match. Subdomain principals do not match
186 * permissions of base domains.
187 * System principals will always have permissions granted.
188 * This function will perform a pref lookup to permissions.default.<type>
189 * if the specific permission type is part of the whitelist for that functionality.
190 */
194 /**
195 * Test whether a website has permission to perform the given action
196 * ignoring active sessions.
197 * System principals will always have permissions granted.
198 * This function will perform a pref lookup to permissions.default.<type>
199 * if the specific permission type is part of the whitelist for that functionality.
200 *
201 * @param principal the principal
202 * @param type a case-sensitive ASCII string, identifying the consumer
203 * @param return see add(), param permission. returns UNKNOWN_ACTION when
204 * there is no stored permission for this uri and / or type.
205 */
209 /**
210 * Get the permission object associated with the given principal and action.
211 * @param principal The principal
212 * @param type A case-sensitive ASCII string identifying the consumer
213 * @param exactHost If true, only the specific host will be matched.
214 * If false, base domains of the principal will also
215 * be searched.
216 * @returns The matching permission object, or null if no matching object
217 * was found. No matching object is equivalent to UNKNOWN_ACTION.
218 * @note Clients in general should prefer the test* methods unless they
219 * need to know the specific stored details.
220 * @note This method will always return null for the system principal.
221 */
226 /**
227 * Returns all stored permissions.
228 * @return an array of nsIPermission objects
229 */
232 /**
233 * Remove all permissions that will match the origin pattern.
234 */
236 };
239 #define NS_PERMISSIONMANAGER_CONTRACTID "@mozilla.org/permissionmanager;1"
241 #define PERM_CHANGE_NOTIFICATION "perm-changed"
242 %}