mirror of
https://github.com/ckaczor/azuredatastudio.git
synced 2026-01-30 01:25:38 -05:00
251ae01c3e
* Initial 1.19 xcopy * Fix yarn build * Fix numerous build breaks * Next batch of build break fixes * More build break fixes * Runtime breaks * Additional post merge fixes * Fix windows setup file * Fix test failures. * Update license header blocks to refer to source eula
166 lines
6.2 KiB
TypeScript
166 lines
6.2 KiB
TypeScript
/*---------------------------------------------------------------------------------------------
|
|
* Copyright (c) Microsoft Corporation. All rights reserved.
|
|
* Licensed under the Source EULA. See License.txt in the project root for license information.
|
|
*--------------------------------------------------------------------------------------------*/
|
|
'use strict';
|
|
|
|
import * as vscode from 'vscode';
|
|
|
|
import { getMarkdownUri, MDDocumentContentProvider } from './features/previewContentProvider';
|
|
|
|
import * as nls from 'vscode-nls';
|
|
|
|
const localize = nls.loadMessageBundle();
|
|
|
|
export enum MarkdownPreviewSecurityLevel {
|
|
Strict = 0,
|
|
AllowInsecureContent = 1,
|
|
AllowScriptsAndAllContent = 2
|
|
}
|
|
|
|
export interface ContentSecurityPolicyArbiter {
|
|
getSecurityLevelForResource(resource: vscode.Uri): MarkdownPreviewSecurityLevel;
|
|
|
|
setSecurityLevelForResource(resource: vscode.Uri, level: MarkdownPreviewSecurityLevel): Thenable<void>;
|
|
|
|
shouldAllowSvgsForResource(resource: vscode.Uri): void;
|
|
|
|
shouldDisableSecurityWarnings(): boolean;
|
|
|
|
setShouldDisableSecurityWarning(shouldShow: boolean): Thenable<void>;
|
|
}
|
|
|
|
export class ExtensionContentSecurityPolicyArbiter implements ContentSecurityPolicyArbiter {
|
|
private readonly old_trusted_workspace_key = 'trusted_preview_workspace:';
|
|
private readonly security_level_key = 'preview_security_level:';
|
|
private readonly should_disable_security_warning_key = 'preview_should_show_security_warning:';
|
|
|
|
constructor(
|
|
private globalState: vscode.Memento,
|
|
private workspaceState: vscode.Memento
|
|
) { }
|
|
|
|
public getSecurityLevelForResource(resource: vscode.Uri): MarkdownPreviewSecurityLevel {
|
|
// Use new security level setting first
|
|
const level = this.globalState.get<MarkdownPreviewSecurityLevel | undefined>(this.security_level_key + this.getRoot(resource), undefined);
|
|
if (typeof level !== 'undefined') {
|
|
return level;
|
|
}
|
|
|
|
// Fallback to old trusted workspace setting
|
|
if (this.globalState.get<boolean>(this.old_trusted_workspace_key + this.getRoot(resource), false)) {
|
|
return MarkdownPreviewSecurityLevel.AllowScriptsAndAllContent;
|
|
}
|
|
return MarkdownPreviewSecurityLevel.Strict;
|
|
}
|
|
|
|
public setSecurityLevelForResource(resource: vscode.Uri, level: MarkdownPreviewSecurityLevel): Thenable<void> {
|
|
return this.globalState.update(this.security_level_key + this.getRoot(resource), level);
|
|
}
|
|
|
|
public shouldAllowSvgsForResource(resource: vscode.Uri) {
|
|
const securityLevel = this.getSecurityLevelForResource(resource);
|
|
return securityLevel === MarkdownPreviewSecurityLevel.AllowInsecureContent || securityLevel === MarkdownPreviewSecurityLevel.AllowScriptsAndAllContent;
|
|
}
|
|
|
|
public shouldDisableSecurityWarnings(): boolean {
|
|
return this.workspaceState.get<boolean>(this.should_disable_security_warning_key, false);
|
|
}
|
|
|
|
public setShouldDisableSecurityWarning(disabled: boolean): Thenable<void> {
|
|
return this.workspaceState.update(this.should_disable_security_warning_key, disabled);
|
|
}
|
|
|
|
private getRoot(resource: vscode.Uri): vscode.Uri {
|
|
if (vscode.workspace.workspaceFolders) {
|
|
const folderForResource = vscode.workspace.getWorkspaceFolder(resource);
|
|
if (folderForResource) {
|
|
return folderForResource.uri;
|
|
}
|
|
|
|
if (vscode.workspace.workspaceFolders.length) {
|
|
return vscode.workspace.workspaceFolders[0].uri;
|
|
}
|
|
}
|
|
|
|
return resource;
|
|
}
|
|
}
|
|
|
|
export class PreviewSecuritySelector {
|
|
|
|
public constructor(
|
|
private cspArbiter: ContentSecurityPolicyArbiter,
|
|
private contentProvider: MDDocumentContentProvider
|
|
) { }
|
|
|
|
public async showSecutitySelectorForResource(resource: vscode.Uri): Promise<void> {
|
|
interface PreviewSecurityPickItem extends vscode.QuickPickItem {
|
|
type: 'moreinfo' | 'toggle' | MarkdownPreviewSecurityLevel;
|
|
}
|
|
|
|
function markActiveWhen(when: boolean): string {
|
|
return when ? '• ' : '';
|
|
}
|
|
|
|
const currentSecurityLevel = this.cspArbiter.getSecurityLevelForResource(resource);
|
|
const selection = await vscode.window.showQuickPick<PreviewSecurityPickItem>(
|
|
[
|
|
{
|
|
type: MarkdownPreviewSecurityLevel.Strict,
|
|
label: markActiveWhen(currentSecurityLevel === MarkdownPreviewSecurityLevel.Strict) + localize('strict.title', 'Strict'),
|
|
description: localize('strict.description', 'Only load secure content'),
|
|
}, {
|
|
type: MarkdownPreviewSecurityLevel.AllowInsecureContent,
|
|
label: markActiveWhen(currentSecurityLevel === MarkdownPreviewSecurityLevel.AllowInsecureContent) + localize('insecureContent.title', 'Allow insecure content'),
|
|
description: localize('insecureContent.description', 'Enable loading content over http'),
|
|
}, {
|
|
type: MarkdownPreviewSecurityLevel.AllowScriptsAndAllContent,
|
|
label: markActiveWhen(currentSecurityLevel === MarkdownPreviewSecurityLevel.AllowScriptsAndAllContent) + localize('disable.title', 'Disable'),
|
|
description: localize('disable.description', 'Allow all content and script execution. Not recommended'),
|
|
}, {
|
|
type: 'moreinfo',
|
|
label: localize('moreInfo.title', 'More Information'),
|
|
description: ''
|
|
}, {
|
|
type: 'toggle',
|
|
label: this.cspArbiter.shouldDisableSecurityWarnings()
|
|
? localize('enableSecurityWarning.title', "Enable preview security warnings in this workspace")
|
|
: localize('disableSecurityWarning.title', "Disable preview security warning in this workspace"),
|
|
description: localize('toggleSecurityWarning.description', 'Does not effect the content security level')
|
|
},
|
|
], {
|
|
placeHolder: localize(
|
|
'preview.showPreviewSecuritySelector.title',
|
|
'Select security settings for Markdown previews in this workspace'),
|
|
});
|
|
|
|
if (!selection) {
|
|
return;
|
|
}
|
|
|
|
if (selection.type === 'moreinfo') {
|
|
vscode.commands.executeCommand('vscode.open', vscode.Uri.parse('https://go.microsoft.com/fwlink/?linkid=854414'));
|
|
return;
|
|
}
|
|
|
|
const sourceUri = getMarkdownUri(resource);
|
|
if (selection.type === 'toggle') {
|
|
this.cspArbiter.setShouldDisableSecurityWarning(!this.cspArbiter.shouldDisableSecurityWarnings());
|
|
this.contentProvider.update(sourceUri);
|
|
return;
|
|
}
|
|
|
|
await this.cspArbiter.setSecurityLevelForResource(resource, selection.type);
|
|
|
|
await vscode.commands.executeCommand('_workbench.htmlPreview.updateOptions',
|
|
sourceUri,
|
|
{
|
|
allowScripts: true,
|
|
allowSvgs: this.cspArbiter.shouldAllowSvgsForResource(resource)
|
|
});
|
|
|
|
this.contentProvider.update(sourceUri);
|
|
}
|
|
}
|