diff options
Diffstat (limited to 'browser/base/content/browser-safebrowsing.js')
-rw-r--r-- | browser/base/content/browser-safebrowsing.js | 75 |
1 files changed, 75 insertions, 0 deletions
diff --git a/browser/base/content/browser-safebrowsing.js b/browser/base/content/browser-safebrowsing.js new file mode 100644 index 0000000000..323887f0c5 --- /dev/null +++ b/browser/base/content/browser-safebrowsing.js @@ -0,0 +1,75 @@ +/* This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ + +// This file is loaded into the browser window scope. +/* eslint-env mozilla/browser-window */ + +var gSafeBrowsing = { + setReportPhishingMenu() { + // In order to detect whether or not we're at the phishing warning + // page, we have to check the documentURI instead of the currentURI. + // This is because when the DocShell loads an error page, the + // currentURI stays at the original target, while the documentURI + // will point to the internal error page we loaded instead. + var docURI = gBrowser.selectedBrowser.documentURI; + var isPhishingPage = + docURI && docURI.spec.startsWith("about:blocked?e=deceptiveBlocked"); + + // Show/hide the appropriate menu item. + const reportMenu = document.getElementById( + "menu_HelpPopup_reportPhishingtoolmenu" + ); + reportMenu.hidden = isPhishingPage; + const reportErrorMenu = document.getElementById( + "menu_HelpPopup_reportPhishingErrortoolmenu" + ); + reportErrorMenu.hidden = !isPhishingPage; + + // Now look at the currentURI to learn which page we were trying + // to browse to. + const uri = gBrowser.currentURI; + const isReportablePage = + uri && (uri.schemeIs("http") || uri.schemeIs("https")); + + const disabledByPolicy = !Services.policies.isAllowed("feedbackCommands"); + + if (disabledByPolicy || isPhishingPage || !isReportablePage) { + reportMenu.setAttribute("disabled", "true"); + } else { + reportMenu.removeAttribute("disabled"); + } + + if (disabledByPolicy || !isPhishingPage || !isReportablePage) { + reportErrorMenu.setAttribute("disabled", "true"); + } else { + reportErrorMenu.removeAttribute("disabled"); + } + }, + + /** + * Used to report a phishing page or a false positive + * + * @param name + * String One of "PhishMistake", "MalwareMistake", or "Phish" + * @param info + * Information about the reasons for blocking the resource. + * In the case false positive, it may contain SafeBrowsing + * matching list and provider of the list + * @return String the report phishing URL. + */ + getReportURL(name, info) { + let reportInfo = info; + if (!reportInfo) { + let pageUri = gBrowser.currentURI; + + // Remove the query to avoid including potentially sensitive data + if (pageUri instanceof Ci.nsIURL) { + pageUri = pageUri.mutate().setQuery("").finalize(); + } + + reportInfo = { uri: pageUri.asciiSpec }; + } + return SafeBrowsing.getReportURL(name, reportInfo); + }, +}; |