liangsheng8708
/
ruffle
mirror of https://mirror.ghproxy.com/https://github.com/ruffle-rs/ruffle.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
ruffle/web/src/navigator.rs

288 lines
9.9 KiB
Rust
Raw Normal View History

Add a backend for controlling the enclosing web browser.
2019-09-01 19:24:04 +00:00
//! Navigator backend for web
Add the ability to POST data from `fetch`, and allow methods that read AVM locals into form data to `GET` or `POST` them.
2020-01-12 22:06:27 +00:00
use js_sys::{Array, ArrayBuffer, Uint8Array};
Shorten `Pin<Box<dyn Future<Output=Result<T,E>> + 'static>>` into `OwnedFuture<T,E>`. This is technically stricter on `fetch` impls, but right now we can't support non-`'static` futures at all.
2020-01-18 04:11:09 +00:00
use ruffle_core::backend::navigator::{
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
NavigationMethod, NavigatorBackend, OpenURLMode, OwnedFuture, Request, Response,
Shorten `Pin<Box<dyn Future<Output=Result<T,E>> + 'static>>` into `OwnedFuture<T,E>`. This is technically stricter on `fetch` impls, but right now we can't support non-`'static` futures at all.
2020-01-18 04:11:09 +00:00
};
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
use ruffle_core::config::NetworkingAccessMode;
core: HTTP request values need to preserve order
2020-08-28 17:16:13 +00:00
use ruffle_core::indexmap::IndexMap;
core: Rename loader::LoaderError to loader::Error
2020-06-18 08:36:04 +00:00
use ruffle_core::loader::Error;
Add a `NavigatorBackend` method to resolve relative URLs.
2020-07-23 04:00:41 +00:00
use std::borrow::Cow;
web: Make sure we set the log subscriber in futures
2023-03-03 03:10:12 +00:00
use std::sync::Arc;
use tracing_subscriber::layer::Layered;
use tracing_subscriber::Registry;
use tracing_wasm::WASMLayer;
web: Fix cors issues with http (close ruffle-rs#1486)
2020-12-11 11:41:44 +00:00
use url::Url;
Support form submission from Flash.
2019-09-04 02:15:03 +00:00
use wasm_bindgen::JsCast;
Impl fetch for web
2019-11-09 02:10:21 +00:00
use wasm_bindgen_futures::{spawn_local, JsFuture};
core: Introduce struct `Response` Currently it's a trivial wrapper around `Vec<u8>`, but more fields will be added in the future (e.g. response URL, HTTP status code).
2022-04-08 12:40:11 +00:00
use web_sys::{
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
window, Blob, BlobPropertyBag, HtmlFormElement, HtmlInputElement, Request as WebRequest,
RequestInit, Response as WebResponse,
core: Introduce struct `Response` Currently it's a trivial wrapper around `Vec<u8>`, but more fields will be added in the future (e.g. response URL, HTTP status code).
2022-04-08 12:40:11 +00:00
};
Add a backend for controlling the enclosing web browser.
2019-09-01 19:24:04 +00:00
core: Add Navigator::time_since_launch to use for getTimer Change `ActionGetTime` (`getTimer`) to use a new backend method. This allows it to return updated times if it is called multiple times in a single frame. This fixes hangs caused by games that use busy-loop "frame limiter" code.
2020-03-29 05:28:07 +00:00
pub struct WebNavigatorBackend {
web: Make sure we set the log subscriber in futures
2023-03-03 03:10:12 +00:00
log_subscriber: Arc<Layered<WASMLayer, Registry>>,
web: Only run JS scripts when `allowScriptAccess` is true
2021-01-11 09:35:45 +00:00
allow_script_access: bool,
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
allow_networking: NetworkingAccessMode,
web: Fix cors issues with http (close ruffle-rs#1486)
2020-12-11 11:41:44 +00:00
upgrade_to_https: bool,
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
base_url: Option<Url>,
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
open_url_mode: OpenURLMode,
core: Add Navigator::time_since_launch to use for getTimer Change `ActionGetTime` (`getTimer`) to use a new backend method. This allows it to return updated times if it is called multiple times in a single frame. This fixes hangs caused by games that use busy-loop "frame limiter" code.
2020-03-29 05:28:07 +00:00
}
Add a backend for controlling the enclosing web browser.
2019-09-01 19:24:04 +00:00
impl WebNavigatorBackend {
web: Adds support for base embed/object attribute (Part of #4258)
2021-08-08 20:38:55 +00:00
pub fn new(
allow_script_access: bool,
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
allow_networking: NetworkingAccessMode,
web: Adds support for base embed/object attribute (Part of #4258)
2021-08-08 20:38:55 +00:00
upgrade_to_https: bool,
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
base_url: Option<String>,
web: Make sure we set the log subscriber in futures
2023-03-03 03:10:12 +00:00
log_subscriber: Arc<Layered<WASMLayer, Registry>>,
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
open_url_mode: OpenURLMode,
web: Adds support for base embed/object attribute (Part of #4258)
2021-08-08 20:38:55 +00:00
) -> Self {
core: Add Navigator::time_since_launch to use for getTimer Change `ActionGetTime` (`getTimer`) to use a new backend method. This allows it to return updated times if it is called multiple times in a single frame. This fixes hangs caused by games that use busy-loop "frame limiter" code.
2020-03-29 05:28:07 +00:00
let window = web_sys::window().expect("window()");
web: support no trailing slash in base parameter
2021-09-12 15:00:36 +00:00
// Upgrade to HTTPS takes effect if the current page is hosted on HTTPS.
web: Remove upgrade_to_https param from Ruffle::new Grab it from the `config` directly instead of using an extra param.
2021-01-06 09:08:47 +00:00
let upgrade_to_https =
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
upgrade_to_https && window.location().protocol().expect("protocol()") == "https:";
web: Remove upgrade_to_https param from Ruffle::new Grab it from the `config` directly instead of using an extra param.
2021-01-06 09:08:47 +00:00
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
// Retrieve and parse `document.baseURI`.
let document_base_uri = || {
let document = window.document().expect("document()");
if let Ok(Some(base_uri)) = document.base_uri() {
return Url::parse(&base_uri).ok();
web: support no trailing slash in base parameter
2021-09-12 15:00:36 +00:00
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
None
};
let base_url = if let Some(mut base_url) = base_url {
// Adding trailing slash so `Url::parse` will not drop the last part.
if !base_url.ends_with('/') {
base_url.push('/');
web: fix base param
2021-09-07 04:44:24 +00:00
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
Url::parse(&base_url)
.ok()
.or_else(|| document_base_uri().and_then(|base_uri| base_uri.join(&base_url).ok()))
} else {
document_base_uri()
};
if base_url.is_none() {
web: Switch from log to tracing
2023-01-04 11:33:10 +00:00
tracing::error!("Could not get base URL for base directory inference.");
web: fix base param
2021-09-07 04:44:24 +00:00
}
core: Remove `NavigatorBackend::time_since_launch` `core` already depends on the `instant` crate which abstracts `std::instant::Instant` and polyfills it on Web. Use it to replace `NavigatorBackend::time_since_launch` in order to make `NavigatorBackend` a little smaller and more simple.
2022-03-16 14:09:26 +00:00
Self {
web: Only run JS scripts when `allowScriptAccess` is true
2021-01-11 09:35:45 +00:00
allow_script_access,
web: Add and partially implement networking API restrictions The networking API restrictions imposed by the allowNetworking parameter & attribute have been added and partially implemented. A new NetworkingRestrictionMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "All", "Internal" and "None" and models the possible values of the allowNetworking parameter / attribute. All means that all networking APIs are permitted in the SWF file, Internal means that the SWF file may not call browser navigation or browser interaction APIs and None means the same and that the SWF file cannot use any SWF-to-SWF communication APIs either. A respective allowNetworking variable has been added to the JS config. Its default value is All. Ruffle now recognises the allowNetworking parameter and attribute in the SWF HTML object and parses it and sets the config variable correspondingly if it's recognised. Only if the variable is set to All, the external interface (responsible for javascript calls in AS3) is created. Additionally, the variable is given to the WebNavigatorBackend and saved in it. The navigator denies all navigate_to_url calls if the variable hasn't been set to All. Therefore, the API restrictions imposed by setting allowNetworking to internal or none have been partially implemented. Formatting has been improved.
2023-04-11 23:32:10 +00:00
allow_networking,
web: Fix cors issues with http (close ruffle-rs#1486)
2020-12-11 11:41:44 +00:00
upgrade_to_https,
web: Adds support for base embed/object attribute (Part of #4258)
2021-08-08 20:38:55 +00:00
base_url,
web: Make sure we set the log subscriber in futures
2023-03-03 03:10:12 +00:00
log_subscriber,
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
open_url_mode,
web: Adds support for base embed/object attribute (Part of #4258)
2021-08-08 20:38:55 +00:00
}
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
fn resolve_url<'a>(&self, url: &'a str) -> Cow<'a, str> {
if let Some(base_url) = &self.base_url {
if let Ok(url) = base_url.join(url) {
return self.pre_process_url(url).to_string().into();
core: Remove `NavigatorBackend::resolve_relative_url` The resolved URL only used by `NavigatorBackend::fetch`. So simply inline `NavigatorBackend::resolve_relative_url` into `NavigatorBackend::fetch`, per implementation.
2022-04-08 13:36:42 +00:00
}
}
url.into()
}
Add a backend for controlling the enclosing web browser.
2019-09-01 19:24:04 +00:00
}
impl NavigatorBackend for WebNavigatorBackend {
chore: cargo fmt
2019-09-17 03:37:11 +00:00
fn navigate_to_url(
&self,
core: Accept borrowed strings in `NavigatorBackend::navigate_to_url` This avoids some unnecessary clones.
2023-04-22 14:07:37 +00:00
url: &str,
target: &str,
core: HTTP request values need to preserve order
2020-08-28 17:16:13 +00:00
vars_method: Option<(NavigationMethod, IndexMap<String, String>)>,
chore: cargo fmt
2019-09-17 03:37:11 +00:00
) {
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
// If the URL is empty, ignore the request.
web: Fix URL sanitizing (fix #3444)
2021-03-21 06:02:57 +00:00
if url.is_empty() {
return;
}
web: Use case-insensitive check for detecting javascript scheme
2021-02-07 08:24:48 +00:00
core: Accept borrowed strings in `NavigatorBackend::navigate_to_url` This avoids some unnecessary clones.
2023-04-22 14:07:37 +00:00
let url = self.resolve_url(url);
web: Use case-insensitive check for detecting javascript scheme
2021-02-07 08:24:48 +00:00
web: Add and partially implement networking API restrictions The networking API restrictions imposed by the allowNetworking parameter & attribute have been added and partially implemented. A new NetworkingRestrictionMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "All", "Internal" and "None" and models the possible values of the allowNetworking parameter / attribute. All means that all networking APIs are permitted in the SWF file, Internal means that the SWF file may not call browser navigation or browser interaction APIs and None means the same and that the SWF file cannot use any SWF-to-SWF communication APIs either. A respective allowNetworking variable has been added to the JS config. Its default value is All. Ruffle now recognises the allowNetworking parameter and attribute in the SWF HTML object and parses it and sets the config variable correspondingly if it's recognised. Only if the variable is set to All, the external interface (responsible for javascript calls in AS3) is created. Additionally, the variable is given to the WebNavigatorBackend and saved in it. The navigator denies all navigate_to_url calls if the variable hasn't been set to All. Therefore, the API restrictions imposed by setting allowNetworking to internal or none have been partially implemented. Formatting has been improved.
2023-04-11 23:32:10 +00:00
// If allowNetworking is set to internal or none, block all navigate_to_url calls.
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
if self.allow_networking != NetworkingAccessMode::All {
web: Add and partially implement networking API restrictions The networking API restrictions imposed by the allowNetworking parameter & attribute have been added and partially implemented. A new NetworkingRestrictionMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "All", "Internal" and "None" and models the possible values of the allowNetworking parameter / attribute. All means that all networking APIs are permitted in the SWF file, Internal means that the SWF file may not call browser navigation or browser interaction APIs and None means the same and that the SWF file cannot use any SWF-to-SWF communication APIs either. A respective allowNetworking variable has been added to the JS config. Its default value is All. Ruffle now recognises the allowNetworking parameter and attribute in the SWF HTML object and parses it and sets the config variable correspondingly if it's recognised. Only if the variable is set to All, the external interface (responsible for javascript calls in AS3) is created. Additionally, the variable is given to the WebNavigatorBackend and saved in it. The navigator denies all navigate_to_url calls if the variable hasn't been set to All. Therefore, the API restrictions imposed by setting allowNetworking to internal or none have been partially implemented. Formatting has been improved.
2023-04-11 23:32:10 +00:00
tracing::warn!("SWF tried to open a URL, but opening URLs is not allowed");
return;
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
// If `allowScriptAccess` is disabled, reject the `javascript:` scheme.
core: Add navigate_to_url call configuration options New configuration options (changing the navigate_to_url call handling) have been added. The default behaviour has been changed as well. A NavigateWebsiteHandlingMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "Allow", "Confirm" and "Deny" and describes how navigate_to_url website calls should be handled. Allow means that all website calls are allowed, Confirm means that a confirmation window opens with each website call and Deny means that all website calls are denied. A respective navigate_website_handling_mode variable has been added to the desktop CLI and to the JS config. The default value is "Confirm" in each. The variable is given to the navigator (ExternalNavigatorBackend or WebNavigatorBackend, depending on the platform) and is saved in it. On each navigate_to_url website call, the respective navigator is now checking navigate_website_handling_mode and acts correspondingly (allows it, opens a confirmation window or denies it). This changes the default behaviour of Ruffle from allowing all website calls to opening a confirmation window with each website call. On Safari, the confirm window can cause the background music to stop, but this seems to be an issue with Safari. Closes #838. Additionally, an allow_javascript_calls variable (which defaults to false) has been added to the desktop CLI. The variable is given to the desktop navigator and is saved in it. If a navigate_to_url javascript call is executed on desktop, the navigator is now checking allow_javascript_calls and acts correspondingly (allows it or denies it). This changes the default behaviour of Ruffle on desktop to not allowing javascript calls. Closes #9316.
2023-04-09 16:27:20 +00:00
let js_call = if let Ok(url) = Url::parse(&url) {
web: Fix URL sanitizing (fix #3444)
2021-03-21 06:02:57 +00:00
if !self.allow_script_access && url.scheme() == "javascript" {
web: Switch from log to tracing
2023-01-04 11:33:10 +00:00
tracing::warn!("SWF tried to run a script, but script access is not allowed");
web: Fix URL sanitizing (fix #3444)
2021-03-21 06:02:57 +00:00
return;
}
core: Add navigate_to_url call configuration options New configuration options (changing the navigate_to_url call handling) have been added. The default behaviour has been changed as well. A NavigateWebsiteHandlingMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "Allow", "Confirm" and "Deny" and describes how navigate_to_url website calls should be handled. Allow means that all website calls are allowed, Confirm means that a confirmation window opens with each website call and Deny means that all website calls are denied. A respective navigate_website_handling_mode variable has been added to the desktop CLI and to the JS config. The default value is "Confirm" in each. The variable is given to the navigator (ExternalNavigatorBackend or WebNavigatorBackend, depending on the platform) and is saved in it. On each navigate_to_url website call, the respective navigator is now checking navigate_website_handling_mode and acts correspondingly (allows it, opens a confirmation window or denies it). This changes the default behaviour of Ruffle from allowing all website calls to opening a confirmation window with each website call. On Safari, the confirm window can cause the background music to stop, but this seems to be an issue with Safari. Closes #838. Additionally, an allow_javascript_calls variable (which defaults to false) has been added to the desktop CLI. The variable is given to the desktop navigator and is saved in it. If a navigate_to_url javascript call is executed on desktop, the navigator is now checking allow_javascript_calls and acts correspondingly (allows it or denies it). This changes the default behaviour of Ruffle on desktop to not allowing javascript calls. Closes #9316.
2023-04-09 16:27:20 +00:00
url.scheme() == "javascript"
} else {
false
};
let window = window().expect("window()");
if !js_call {
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
if self.open_url_mode == OpenURLMode::Confirm {
core: Implement suggested changes in PR to documentation & code - Documentation has been added, improved and clarified. - The code of a string concatenation has been improved.
2023-05-02 13:52:37 +00:00
let message = format!("The SWF file wants to open the website {}", &url);
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
// TODO: Add a checkbox with a GUI toolkit
core: Add navigate_to_url call configuration options New configuration options (changing the navigate_to_url call handling) have been added. The default behaviour has been changed as well. A NavigateWebsiteHandlingMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "Allow", "Confirm" and "Deny" and describes how navigate_to_url website calls should be handled. Allow means that all website calls are allowed, Confirm means that a confirmation window opens with each website call and Deny means that all website calls are denied. A respective navigate_website_handling_mode variable has been added to the desktop CLI and to the JS config. The default value is "Confirm" in each. The variable is given to the navigator (ExternalNavigatorBackend or WebNavigatorBackend, depending on the platform) and is saved in it. On each navigate_to_url website call, the respective navigator is now checking navigate_website_handling_mode and acts correspondingly (allows it, opens a confirmation window or denies it). This changes the default behaviour of Ruffle from allowing all website calls to opening a confirmation window with each website call. On Safari, the confirm window can cause the background music to stop, but this seems to be an issue with Safari. Closes #838. Additionally, an allow_javascript_calls variable (which defaults to false) has been added to the desktop CLI. The variable is given to the desktop navigator and is saved in it. If a navigate_to_url javascript call is executed on desktop, the navigator is now checking allow_javascript_calls and acts correspondingly (allows it or denies it). This changes the default behaviour of Ruffle on desktop to not allowing javascript calls. Closes #9316.
2023-04-09 16:27:20 +00:00
let confirm = window
.confirm_with_message(&message)
.expect("confirm_with_message()");
if !confirm {
tracing::info!(
"SWF tried to open a website, but the user declined the request"
);
return;
}
web: Implement suggested changes in PR to navigate_to_url handling The suggested changes to the navigate_to_url handling in the feedback to the pull request have been implemented. Therefore, this commit consists of multiple smaller changes: 1. The allow_javascript_calls variable has been removed (as a CLI argument and in the navigator). Javascript calls are now always denied on desktop. This is because setting the argument was useless; no javascript was executed in any case, at most, just a browser tab opened. Therefore, it makes no sense to include this option. 2. The NavigateWebsiteHandlingMode default value has been provisionally changed from Confirm to Allow. In the future (after a GUI toolkit has been added), the default confirmation windows should include a "Save this preference" checkbox. 3. The NetworkingRestrictionMode enum has been renamed to NetworkingAccessMode since the previous naming was counter-intuitive. 4. The NavigateWebsiteHandlingMode enum (and variables related to it) have been renamed to OpenURLMode to simplify the name. 5. The documentation has been improved.
2023-04-12 22:58:56 +00:00
} else if self.open_url_mode == OpenURLMode::Deny {
core: Add navigate_to_url call configuration options New configuration options (changing the navigate_to_url call handling) have been added. The default behaviour has been changed as well. A NavigateWebsiteHandlingMode enum has been added to Ruffle (in Rust and Typescript). It contains the values "Allow", "Confirm" and "Deny" and describes how navigate_to_url website calls should be handled. Allow means that all website calls are allowed, Confirm means that a confirmation window opens with each website call and Deny means that all website calls are denied. A respective navigate_website_handling_mode variable has been added to the desktop CLI and to the JS config. The default value is "Confirm" in each. The variable is given to the navigator (ExternalNavigatorBackend or WebNavigatorBackend, depending on the platform) and is saved in it. On each navigate_to_url website call, the respective navigator is now checking navigate_website_handling_mode and acts correspondingly (allows it, opens a confirmation window or denies it). This changes the default behaviour of Ruffle from allowing all website calls to opening a confirmation window with each website call. On Safari, the confirm window can cause the background music to stop, but this seems to be an issue with Safari. Closes #838. Additionally, an allow_javascript_calls variable (which defaults to false) has been added to the desktop CLI. The variable is given to the desktop navigator and is saved in it. If a navigate_to_url javascript call is executed on desktop, the navigator is now checking allow_javascript_calls and acts correspondingly (allows it or denies it). This changes the default behaviour of Ruffle on desktop to not allowing javascript calls. Closes #9316.
2023-04-09 16:27:20 +00:00
tracing::warn!("SWF tried to open a website, but opening a website is not allowed");
return;
}
// If the user confirmed or if in Allow mode, open the website
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
}
web: Use case-insensitive check for detecting javascript scheme
2021-02-07 08:24:48 +00:00
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
// TODO: Should we return a result for failed opens? Does Flash care?
match vars_method {
Some((navmethod, formvars)) => {
let document = window.document().expect("document()");
let body = match document.body() {
Some(body) => body,
None => return,
};
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
let form: HtmlFormElement = document
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
.create_element("form")
web: Removed unwraps in navigator backend
2022-12-30 23:08:35 +00:00
.expect("create_element() must succeed")
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
.dyn_into()
.expect("create_element(\"form\") didn't give us a form");
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
form.set_method(&navmethod.to_string());
form.set_action(&url);
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
if !target.is_empty() {
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
form.set_target(target);
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
}
web: Changes from review
2021-01-10 14:04:31 +00:00
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
for (key, value) in formvars {
let hidden: HtmlInputElement = document
web: Removed unwraps in navigator backend
2022-12-30 23:08:35 +00:00
.create_element("input")
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
.expect("create_element() must succeed")
.dyn_into()
.expect("create_element(\"input\") didn't give us an input");
web: Changes from review
2021-01-10 14:04:31 +00:00
web: Avoid `web_sys::Element::set_attribute` Use type-specific setters instead.
2023-04-22 19:23:24 +00:00
hidden.set_type("hidden");
hidden.set_name(&key);
hidden.set_value(&value);
web: Use case-insensitive check for detecting javascript scheme
2021-02-07 08:24:48 +00:00
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
let _ = form.append_child(&hidden);
web: Use case-insensitive check for detecting javascript scheme
2021-02-07 08:24:48 +00:00
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
let _ = body.append_child(&form);
let _ = form.submit();
}
None => {
if target.is_empty() {
let _ = window.location().assign(&url);
} else {
core: Accept borrowed strings in `NavigatorBackend::navigate_to_url` This avoids some unnecessary clones.
2023-04-22 14:07:37 +00:00
let _ = window.open_with_url_and_target(&url, target);
web: Use case-insensitive check for detecting javascript scheme
2021-02-07 08:24:48 +00:00
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
}
};
web: Changes from review
2021-01-10 14:04:31 +00:00
}
core: Introduce `Request` Which holds both a URL and what was `RequestOptions` formerly.
2022-06-11 08:55:17 +00:00
fn fetch(&self, request: Request) -> OwnedFuture<Response, Error> {
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
let url = self.resolve_url(request.url()).into_owned();
web: Fix cors issues with http (close ruffle-rs#1486)
2020-12-11 11:41:44 +00:00
Impl fetch for web
2019-11-09 02:10:21 +00:00
Box::pin(async move {
Add the ability to POST data from `fetch`, and allow methods that read AVM locals into form data to `GET` or `POST` them.
2020-01-12 22:06:27 +00:00
let mut init = RequestInit::new();
web: Use `NavigationMethod::to_string`
2023-04-22 14:08:10 +00:00
init.method(&request.method().to_string());
Add the ability to POST data from `fetch`, and allow methods that read AVM locals into form data to `GET` or `POST` them.
2020-01-12 22:06:27 +00:00
core: Introduce `Request` Which holds both a URL and what was `RequestOptions` formerly.
2022-06-11 08:55:17 +00:00
if let Some((data, mime)) = request.body() {
web: Slightly refactor `WebNavigatorBackend::fetch`
2023-04-22 14:08:35 +00:00
let blob = Blob::new_with_buffer_source_sequence_and_options(
&Array::from_iter([Uint8Array::from(data.as_slice()).buffer()]),
BlobPropertyBag::new().type_(mime),
)
.map_err(|_| Error::FetchError("Got JS error".to_string()))?
.dyn_into()
.map_err(|_| Error::FetchError("Got JS error".to_string()))?;
init.body(Some(&blob));
Add the ability to POST data from `fetch`, and allow methods that read AVM locals into form data to `GET` or `POST` them.
2020-01-12 22:06:27 +00:00
}
avm2: Implement URLRequest.requestHeaders These are directly set on the underlying navigator's HTTP request type, and get printed out in our test navigator backend. No validation of the header names is performed - on web, this will be enforced by the browser.
2023-04-28 18:01:46 +00:00
let web_request = WebRequest::new_with_str_and_init(&url, &init)
core: Fix clippy format string lint
2022-10-26 23:46:09 +00:00
.map_err(|_| Error::FetchError(format!("Unable to create request for {url}")))?;
Add the ability to POST data from `fetch`, and allow methods that read AVM locals into form data to `GET` or `POST` them.
2020-01-12 22:06:27 +00:00
avm2: Implement URLRequest.requestHeaders These are directly set on the underlying navigator's HTTP request type, and get printed out in our test navigator backend. No validation of the header names is performed - on web, this will be enforced by the browser.
2023-04-28 18:01:46 +00:00
let headers = web_request.headers();
for (header_name, header_val) in request.headers() {
headers
.set(header_name, header_val)
.map_err(|_| Error::FetchError("Got JS error".to_string()))?;
}
web: Refactor `WebNavigatorBackend` Store `base_url` as `Option<Url>` instead of `Option<String>`, so we don't need to parse it on each URL resolve.
2022-08-12 15:21:49 +00:00
let window = web_sys::window().expect("window()");
avm2: Implement URLRequest.requestHeaders These are directly set on the underlying navigator's HTTP request type, and get printed out in our test navigator backend. No validation of the header names is performed - on web, this will be enforced by the browser.
2023-04-28 18:01:46 +00:00
let fetchval = JsFuture::from(window.fetch_with_request(&web_request))
core: Perfer `Loader`'s `FetchError` `NetworkError` and `NetworkUnavailable` were rarely used, and they were very similar to `FetchError`.
2022-03-17 23:38:31 +00:00
.await
.map_err(|_| Error::FetchError("Got JS error".to_string()))?;
chore: Make error message more helpful
2021-03-27 19:43:43 +00:00
web: Removed unwraps in navigator backend
2022-12-30 23:08:35 +00:00
let response: WebResponse = fetchval
.dyn_into()
.map_err(|_| Error::FetchError("Fetch result wasn't a WebResponse".to_string()))?;
core: Fix status code implementation for AVM1 and implement HTTPStatusEvent.HTTP_STATUS for avm2 (#11360)
2023-06-10 03:06:26 +00:00
let status = response.status();
let redirected = response.redirected();
core: Introduce struct `Response` Currently it's a trivial wrapper around `Vec<u8>`, but more fields will be added in the future (e.g. response URL, HTTP status code).
2022-04-08 12:40:11 +00:00
if !response.ok() {
core: Fix status code implementation for AVM1 and implement HTTPStatusEvent.HTTP_STATUS for avm2 (#11360)
2023-06-10 03:06:26 +00:00
return Err(Error::HttpNotOk(
format!("HTTP status is not ok, got {}", response.status_text()),
status,
redirected,
));
web/desktop: Check the HTTP status of requests
2021-03-26 01:07:50 +00:00
}
chore: Make error message more helpful
2021-03-27 19:43:43 +00:00
core: Introduce and use `Response::url`
2022-04-08 13:08:13 +00:00
let url = response.url();
web: Removed unwraps in navigator backend
2022-12-30 23:08:35 +00:00
let body: ArrayBuffer = JsFuture::from(
response
.array_buffer()
.map_err(|_| Error::FetchError("Got JS error".to_string()))?,
)
.await
.map_err(|_| {
Error::FetchError("Could not allocate array buffer for response".to_string())
})?
.dyn_into()
.map_err(|_| {
Error::FetchError("array_buffer result wasn't an ArrayBuffer".to_string())
})?;
core: Introduce struct `Response` Currently it's a trivial wrapper around `Vec<u8>`, but more fields will be added in the future (e.g. response URL, HTTP status code).
2022-04-08 12:40:11 +00:00
let body = Uint8Array::new(&body).to_vec();
web: check array_buffer promise for failure
2021-08-25 10:32:55 +00:00
core: Fix status code implementation for AVM1 and implement HTTPStatusEvent.HTTP_STATUS for avm2 (#11360)
2023-06-10 03:06:26 +00:00
Ok(Response {
url,
body,
status,
redirected,
})
Impl fetch for web
2019-11-09 02:10:21 +00:00
})
Extremely basic impl of fetch/spawn methods for getting data off the web
2019-11-07 19:34:38 +00:00
}
core: Rename loader::LoaderError to loader::Error
2020-06-18 08:36:04 +00:00
fn spawn_future(&mut self, future: OwnedFuture<(), Error>) {
web: Make sure we set the log subscriber in futures
2023-03-03 03:10:12 +00:00
let subscriber = self.log_subscriber.clone();
Make spawned futures falliable, and report those errors.
2019-11-14 19:52:13 +00:00
spawn_local(async move {
web: Make sure we set the log subscriber in futures
2023-03-03 03:10:12 +00:00
let _subscriber = tracing::subscriber::set_default(subscriber);
Make spawned futures falliable, and report those errors.
2019-11-14 19:52:13 +00:00
if let Err(e) = future.await {
web: Switch from log to tracing
2023-01-04 11:33:10 +00:00
tracing::error!("Asynchronous error occurred: {}", e);
Make spawned futures falliable, and report those errors.
2019-11-14 19:52:13 +00:00
}
})
Extremely basic impl of fetch/spawn methods for getting data off the web
2019-11-07 19:34:38 +00:00
}
Add a `NavigatorBackend` method to resolve relative URLs.
2020-07-23 04:00:41 +00:00
web: Fix cors issues with http (close ruffle-rs#1486)
2020-12-11 11:41:44 +00:00
fn pre_process_url(&self, mut url: Url) -> Url {
if self.upgrade_to_https && url.scheme() == "http" && url.set_scheme("https").is_err() {
web: Switch from log to tracing
2023-01-04 11:33:10 +00:00
tracing::error!("Url::set_scheme failed on: {}", url);
web: Fix cors issues with http (close ruffle-rs#1486)
2020-12-11 11:41:44 +00:00
}
url
}
chore: cargo fmt
2019-09-17 03:37:11 +00:00
}