add config page and approved hosts logic

Author: deansheather

extension/manifest.json

@@ -15,16 +15,18 @@
 	"content_scripts": [
 		{
 			"matches": [
-				"https://github.com/*",
-				"https://gitlab.com/*"
+				"https://*/*"
 			],
 			"js": [
 				"out/content.js"
 			]
 		}
 	],
 	"permissions": [
-		"nativeMessaging"
+		"<all_urls>",
+		"nativeMessaging",
+		"storage",
+		"tabs"
 	],
 	"icons": {
 		"128": "logo128.png"

extension/src/background.ts

@@ -1,4 +1,9 @@
-import { ExtensionMessage, WebSocketMessage } from "./common";
+import {
+	ExtensionMessage,
+	WebSocketMessage,
+	getApprovedHosts,
+	addApprovedHost
+} from "./common";
 
 export class SailConnector {
 	private port: chrome.runtime.Port;
@@ -90,24 +95,72 @@ chrome.runtime.onMessage.addListener((data: ExtensionMessage, sender, sendRespon
 				return;
 			}
 
-			// onMessage forwards WebSocketMessages to the tab that
-			// launched Sail.
-			const onMessage = (message: WebSocketMessage) => {
-				chrome.tabs.sendMessage(sender.tab.id, message);
-			};
-			connector.connect().then((sailUrl) => {
-				const socketUrl = sailUrl.replace("http:", "ws:") + "/api/v1/run";
-				return doConnection(socketUrl, data.projectUrl, onMessage).then((conn) => {
+			// Check that the tab is an approved host, otherwise ask
+			// the user for permission before launching Sail.
+			const url = new URL(sender.tab.url);
+			const host = url.hostname;
+			getApprovedHosts()
+				.then((hosts) => {
+					for (let h of hosts) {
+						if (h === host || (h.startsWith(".") && (host === h.substr(1) || host.endsWith(h)))) {
+							// Approved host.
+							return true;
+						}
+					}
+
+					// If not approved, ask for approval.
+					return new Promise((resolve, reject) => {
+						chrome.tabs.executeScript(sender.tab.id, {
+							code: `confirm("Launch Sail? This will add this host to your approved hosts list.")`,
+						}, (result) => {
+							if (chrome.runtime.lastError) {
+								return reject(chrome.runtime.lastError.message);
+							}
+
+							if (result) {
+								// The user approved the confirm dialog.
+								addApprovedHost(host)
+									.then(() => resolve(true))
+									.catch(reject);
+								return;
+							}
+
+							return false;
+						});
+					});
+				})
+				.then((approved) => {
+					if (!approved) {
+						return;
+					}
+
+					// Start Sail.
+					// onMessage forwards WebSocketMessages to the tab that
+					// launched Sail.
+					const onMessage = (message: WebSocketMessage) => {
+						chrome.tabs.sendMessage(sender.tab.id, message);
+					};
+					connector.connect().then((sailUrl) => {
+						const socketUrl = sailUrl.replace("http:", "ws:") + "/api/v1/run";
+						return doConnection(socketUrl, data.projectUrl, onMessage).then((conn) => {
+							sendResponse({
+								type: "sail",
+							});
+						});
+					}).catch((ex) => {
+						sendResponse({
+							type: "sail",
+							error: ex.toString(),
+						});
+					});
+				})
+				.catch((ex) => {
 					sendResponse({
 						type: "sail",
+						error: ex.toString(),
 					});
+
 				});
-			}).catch((ex) => {
-				sendResponse({
-					type: "sail",
-					error: ex.toString(),
-				});
-			})
 		} else {
 			// Check if we can get a sail URL.
 			connector.connect().then(() => {

extension/src/common.ts

@@ -1,14 +1,33 @@
+// approvedHostsKey is the key in extension storage used for storing the
+// string[] containing hosts approved by the user. For versioning purposes, the
+// number at the end of the key should be incremented if the method used to
+// store approved hosts changes.
+export const approvedHostsKey = "approved_hosts_0";
+
+// defaultApprovedHosts is the default approved hosts list. This list should
+// only include GitHub.com, GitLab.com, BitBucket.com, etc.
+export const defaultApprovedHosts = [
+	".github.com",
+	".gitlab.com",
+	//".bitbucket.com",
+];
+
+// ExtensionMessage is used for communication within the extension.
 export interface ExtensionMessage {
 	readonly type: "sail";
 	readonly error?: string;
 	readonly projectUrl?: string;
 }
 
+// WebSocketMessage is a message from sail itself, sent over the WebSocket
+// connection.
 export interface WebSocketMessage {
 	readonly type: string;
 	readonly v: any;
 }
 
+// launchSail starts an instance of sail and instructs it to launch the
+// specified project URL. Terminal output will be sent to the onMessage handler.
 export const launchSail = (projectUrl: string, onMessage: (WebSocketMessage) => void): Promise<void> => {
 	const listener = (message: any) => {
 		if (message.type && message.v) {
@@ -34,6 +53,8 @@ export const launchSail = (projectUrl: string, onMessage: (WebSocketMessage) =>
 	});
 };
 
+// sailAvailable resolves if the native host manifest is available and allows
+// the extension to connect to Sail. This does not attempt a connection to Sail.
 export const sailAvailable = (): Promise<void> => {
 	return new Promise<void>((resolve, reject) => {
 		chrome.runtime.sendMessage({
@@ -49,3 +70,52 @@ export const sailAvailable = (): Promise<void> => {
 		});
 	});
 };
+
+// getApprovedHosts gets the approved hosts list from storage.
+export const getApprovedHosts = (): Promise<string[]> => {
+	return new Promise((resolve, reject) => {
+		chrome.storage.sync.get(approvedHostsKey, (items) => {
+			if (chrome.runtime.lastError) {
+				return reject(chrome.runtime.lastError.message);
+			}
+
+			if (!Array.isArray(items[approvedHostsKey])) {
+				// No approved hosts.
+				return resolve(defaultApprovedHosts);
+			}
+
+			resolve(items[approvedHostsKey]);
+		});
+	});
+};
+
+// setApprovedHosts sets the approved hosts key in storage. No validation is
+// performed.
+export const setApprovedHosts = (hosts: string[]): Promise<void> => {
+	return new Promise((resolve, reject) => {
+		chrome.storage.sync.set({ [approvedHostsKey]: hosts }, () => {
+			if (chrome.runtime.lastError) {
+				return reject(chrome.runtime.lastError.message);
+			}
+
+			resolve();
+		});
+	});
+};
+
+// addApprovedHost adds a single host to the approved hosts list. No validation
+// (except duplicate entry checking) is performed. The host is lowercased
+// automatically.
+export const addApprovedHost = async (host: string): Promise<void> => {
+	host = host.toLowerCase();
+
+	// Check for duplicates.
+	let hosts = await getApprovedHosts();
+	if (hosts.includes(host)) {
+		return;
+	}
+
+	// Add new host and set approved hosts.
+	hosts.push(host);
+	await setApprovedHosts(hosts);
+};

extension/src/config.html

@@ -0,0 +1,67 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+	<meta charset="UTF-8">
+	<title>Sail Extension</title>
+</head>
+<body>
+	<header>
+		<h1>Sail</h1>
+	</header>
+
+	<section id="sail-available">
+		<p id="sail-available-status">Fetching Sail URL...</p>
+	</section>
+
+	<section id="approved-hosts">
+		<h3>Approved Hosts</h3>
+		<p>
+			Approved hosts can start Sail without requiring you to
+			approve it via a popup. Without this, any website could
+			launch Sail and launch a malicious repository.
+		</p>
+		<p>
+			For more information, please refer to
+			<a href="https://github.com/cdr/sail/issues/237" target="_blank">cdr/sail#237</a>
+		</p>
+
+		<table>
+			<tbody id="approved-hosts-entries">
+				<tr>
+					<td>Loading entries...</td>
+				</tr>
+
+				<!--
+				<tr>
+					<td>
+						<input type="checkbox" class="host-checkbox">
+					</td>
+					<td>
+						.host.com
+					</td>
+					<td>
+						<button class="host-remove-btn">
+							Remove
+						</button>
+					</td>
+				</tr>
+				-->
+			</tbody>
+		</table>
+
+		<div>
+			<h4>Add an approved host:</h4>
+			<p>
+				If you prepend your host with a period (<code>.</code>),
+				Sail will match all subdomains on that host as well as
+				the host itself.
+			</p>
+
+			<input id="approved-hosts-add-input" type="text" pattern="^(\.?[^\.]+)+$">
+			<button id="approved-hosts-add">Add</button>
+		</div>
+	</section>
+
+	<script src="/out/config.js"></script>
+</body>
+</html>