gecko-dev/extensions/cookie/nsPermission.cpp

/* -*- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
/* This Source Code Form is subject to the terms of the Mozilla Public
 * License, v. 2.0. If a copy of the MPL was not distributed with this
 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */

#include "nsPermission.h"
#include "nsContentUtils.h"
#include "nsIClassInfoImpl.h"
#include "nsIEffectiveTLDService.h"
#include "mozilla/BasePrincipal.h"

// nsPermission Implementation

NS_IMPL_CLASSINFO(nsPermission, nullptr, 0, {0})
NS_IMPL_ISUPPORTS_CI(nsPermission, nsIPermission)

nsPermission::nsPermission(nsIPrincipal* aPrincipal, const nsACString& aType,
                           uint32_t aCapability, uint32_t aExpireType,
                           int64_t aExpireTime)
    : mPrincipal(aPrincipal),
      mType(aType),
      mCapability(aCapability),
      mExpireType(aExpireType),
      mExpireTime(aExpireTime) {}

already_AddRefed<nsPermission> nsPermission::Create(nsIPrincipal* aPrincipal,
                                                    const nsACString& aType,
                                                    uint32_t aCapability,
                                                    uint32_t aExpireType,
                                                    int64_t aExpireTime) {
  NS_ENSURE_TRUE(aPrincipal, nullptr);
  nsCOMPtr<nsIPrincipal> principal =
      mozilla::BasePrincipal::Cast(aPrincipal)
          ->CloneStrippingUserContextIdAndFirstPartyDomain();

  NS_ENSURE_TRUE(principal, nullptr);

  RefPtr<nsPermission> permission =
      new nsPermission(principal, aType, aCapability, aExpireType, aExpireTime);
  return permission.forget();
}

NS_IMETHODIMP
nsPermission::GetPrincipal(nsIPrincipal** aPrincipal) {
  nsCOMPtr<nsIPrincipal> copy = mPrincipal;
  copy.forget(aPrincipal);
  return NS_OK;
}

NS_IMETHODIMP
nsPermission::GetType(nsACString& aType) {
  aType = mType;
  return NS_OK;
}

NS_IMETHODIMP
nsPermission::GetCapability(uint32_t* aCapability) {
  *aCapability = mCapability;
  return NS_OK;
}

NS_IMETHODIMP
nsPermission::GetExpireType(uint32_t* aExpireType) {
  *aExpireType = mExpireType;
  return NS_OK;
}

NS_IMETHODIMP
nsPermission::GetExpireTime(int64_t* aExpireTime) {
  *aExpireTime = mExpireTime;
  return NS_OK;
}

NS_IMETHODIMP
nsPermission::Matches(nsIPrincipal* aPrincipal, bool aExactHost,
                      bool* aMatches) {
  NS_ENSURE_ARG_POINTER(aPrincipal);
  NS_ENSURE_ARG_POINTER(aMatches);

  *aMatches = false;

  nsCOMPtr<nsIPrincipal> principal =
      mozilla::BasePrincipal::Cast(aPrincipal)
          ->CloneStrippingUserContextIdAndFirstPartyDomain();

  if (!principal) {
    *aMatches = false;
    return NS_OK;
  }

  // If the principals are equal, then they match.
  if (mPrincipal->Equals(principal)) {
    *aMatches = true;
    return NS_OK;
  }

  // If we are matching with an exact host, we're done now - the permissions
  // don't match otherwise, we need to start comparing subdomains!
  if (aExactHost) {
    return NS_OK;
  }

  // Compare their OriginAttributes
  const mozilla::OriginAttributes& theirAttrs =
      principal->OriginAttributesRef();
  const mozilla::OriginAttributes& ourAttrs = mPrincipal->OriginAttributesRef();

  if (theirAttrs != ourAttrs) {
    return NS_OK;
  }

  nsCOMPtr<nsIURI> theirURI;
  nsresult rv = principal->GetURI(getter_AddRefs(theirURI));
  NS_ENSURE_SUCCESS(rv, rv);

  nsCOMPtr<nsIURI> ourURI;
  rv = mPrincipal->GetURI(getter_AddRefs(ourURI));
  NS_ENSURE_SUCCESS(rv, rv);

  // Compare schemes
  nsAutoCString theirScheme;
  rv = theirURI->GetScheme(theirScheme);
  NS_ENSURE_SUCCESS(rv, rv);

  nsAutoCString ourScheme;
  rv = ourURI->GetScheme(ourScheme);
  NS_ENSURE_SUCCESS(rv, rv);

  if (theirScheme != ourScheme) {
    return NS_OK;
  }

  // Compare ports
  int32_t theirPort;
  rv = theirURI->GetPort(&theirPort);
  NS_ENSURE_SUCCESS(rv, rv);

  int32_t ourPort;
  rv = ourURI->GetPort(&ourPort);
  NS_ENSURE_SUCCESS(rv, rv);

  if (theirPort != ourPort) {
    return NS_OK;
  }

  // Check if the host or any subdomain of their host matches.
  nsAutoCString theirHost;
  rv = theirURI->GetHost(theirHost);
  if (NS_FAILED(rv) || theirHost.IsEmpty()) {
    return NS_OK;
  }

  nsAutoCString ourHost;
  rv = ourURI->GetHost(ourHost);
  if (NS_FAILED(rv) || ourHost.IsEmpty()) {
    return NS_OK;
  }

  nsCOMPtr<nsIEffectiveTLDService> tldService =
      do_GetService(NS_EFFECTIVETLDSERVICE_CONTRACTID);
  if (!tldService) {
    NS_ERROR("Should have a tld service!");
    return NS_ERROR_FAILURE;
  }

  // This loop will not loop forever, as GetNextSubDomain will eventually fail
  // with NS_ERROR_INSUFFICIENT_DOMAIN_LEVELS.
  while (theirHost != ourHost) {
    rv = tldService->GetNextSubDomain(theirHost, theirHost);
    if (NS_FAILED(rv)) {
      if (rv == NS_ERROR_INSUFFICIENT_DOMAIN_LEVELS) {
        return NS_OK;
      } else {
        return rv;
      }
    }
  }

  *aMatches = true;
  return NS_OK;
}

NS_IMETHODIMP
nsPermission::MatchesURI(nsIURI* aURI, bool aExactHost, bool* aMatches) {
  NS_ENSURE_ARG_POINTER(aURI);

  mozilla::OriginAttributes attrs;
  nsCOMPtr<nsIPrincipal> principal =
      mozilla::BasePrincipal::CreateCodebasePrincipal(aURI, attrs);
  NS_ENSURE_TRUE(principal, NS_ERROR_FAILURE);

  return Matches(principal, aExactHost, aMatches);
}
Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`/* -- Mode: C++; tab-width: 2; indent-tabs-mode: nil; c-basic-offset: 2 -- */`
Bug 716478 - update licence to MPL 2. 2012-05-21 15:12:37 +04:00			`/* This Source Code Form is subject to the terms of the Mozilla Public`
			`* License, v. 2.0. If a copy of the MPL was not distributed with this`
			`* file, You can obtain one at http://mozilla.org/MPL/2.0/. */`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00
			`#include "nsPermission.h"`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`#include "nsContentUtils.h"`
Bug 874196 - Add an API to get the specifics of a permission given a host/type: this will allow the plugin click-to-activate UI to manage permissions by the matching host and determine whether the current permission is per-session or persistent. r=jdm sr=mounir 2013-06-06 23:59:31 +04:00			`#include "nsIClassInfoImpl.h"`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`#include "nsIEffectiveTLDService.h"`
Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`#include "mozilla/BasePrincipal.h"`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00
			`// nsPermission Implementation`

Bug 874196 - Add an API to get the specifics of a permission given a host/type: this will allow the plugin click-to-activate UI to manage permissions by the matching host and determine whether the current permission is per-session or persistent. r=jdm sr=mounir 2013-06-06 23:59:31 +04:00			`NS_IMPL_CLASSINFO(nsPermission, nullptr, 0, {0})`
Bug 900908 - Part 3: Change uses of numbered macros in nsIClassInfoImpl.h/nsISupportsImpl.h to the variadic variants. r=froydnj 2014-04-27 11:06:00 +04:00			`NS_IMPL_ISUPPORTS_CI(nsPermission, nsIPermission)`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::nsPermission(nsIPrincipal* aPrincipal, const nsACString& aType,`
Bug 579517 - Part 1: Automated conversion of NSPR numeric types to stdint types in Gecko; r=bsmedberg This patch was generated by a script. Here's the source of the script for future reference: function convert() { echo "Converting $1 to $2..." find . ! -wholename "nsprpub" \ ! -wholename "security/nss" \ ! -wholename "/.hg" \ ! -wholename "obj-ff-dbg" \ ! -name nsXPCOMCID.h \ ! -name prtypes.h \ -type f \ \( -iname ".cpp" \ -o -iname ".h" \ -o -iname ".c" \ -o -iname ".cc" \ -o -iname ".idl" \ -o -iname ".ipdl" \ -o -iname ".ipdlh" \ -o -iname "*.mm" \) \| \ xargs -n 1 sed -i -e "s/\b$1\b/$2/g" } convert PRInt8 int8_t convert PRUint8 uint8_t convert PRInt16 int16_t convert PRUint16 uint16_t convert PRInt32 int32_t convert PRUint32 uint32_t convert PRInt64 int64_t convert PRUint64 uint64_t convert PRIntn int convert PRUintn unsigned convert PRSize size_t convert PROffset32 int32_t convert PROffset64 int64_t convert PRPtrdiff ptrdiff_t convert PRFloat64 double 2012-08-22 19:56:38 +04:00			`uint32_t aCapability, uint32_t aExpireType,`
			`int64_t aExpireTime)`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`: mPrincipal(aPrincipal),`
remove cid's/contractid's and factory constructors for nsCookie and nsPermission, since these objects shouldn't be instantiable. b=209506, r=darin/mvl, sr=bz 2003-06-18 04:52:59 +04:00			`mType(aType),`
			`mCapability(aCapability),`
Bug 519263 - Session and time-based expiration for permissions in permissions manager. r=dwitte, sr=mrbkap. First patch! Yay!! 2009-10-17 01:01:04 +04:00			`mExpireType(aExpireType),`
			`mExpireTime(aExpireTime) {}`
Bug 1511181 - Reformat everything to the Google coding style r=ehsan a=clang-format # ignore-this-changeset --HG-- extra : amend_source : 4d301d3b0b8711c4692392aa76088ba7fd7d1022 2018-11-30 13:46:48 +03:00
Bug 1302047 - Ignore userContextId and firstPartyDomain when matching permissions. r=baku --HG-- extra : rebase_source : da81c21da92810d808ebe865a456cc9d04058ce3 2016-09-20 11:35:21 +03:00			`already_AddRefed<nsPermission> nsPermission::Create(nsIPrincipal* aPrincipal,`
			`const nsACString& aType,`
			`uint32_t aCapability,`
			`uint32_t aExpireType,`
			`int64_t aExpireTime) {`
			`NS_ENSURE_TRUE(aPrincipal, nullptr);`
			`nsCOMPtr<nsIPrincipal> principal =`
			`mozilla::BasePrincipal::Cast(aPrincipal)`
			`->CloneStrippingUserContextIdAndFirstPartyDomain();`

			`NS_ENSURE_TRUE(principal, nullptr);`

			`RefPtr<nsPermission> permission =`
			`new nsPermission(principal, aType, aCapability, aExpireType, aExpireTime);`
			`return permission.forget();`
			`}`

Bug 777072 - 4/7 - Update nsPermission to use appId/isInBrowserElement. r=sicking 2012-08-23 22:37:31 +04:00			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::GetPrincipal(nsIPrincipal** aPrincipal) {`
			`nsCOMPtr<nsIPrincipal> copy = mPrincipal;`
			`copy.forget(aPrincipal);`
Bug 777072 - 4/7 - Update nsPermission to use appId/isInBrowserElement. r=sicking 2012-08-23 22:37:31 +04:00			`return NS_OK;`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00			`}`

remove cid's/contractid's and factory constructors for nsCookie and nsPermission, since these objects shouldn't be instantiable. b=209506, r=darin/mvl, sr=bz 2003-06-18 04:52:59 +04:00			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::GetType(nsACString& aType) {`
			`aType = mType;`
Bug 777072 - 4/7 - Update nsPermission to use appId/isInBrowserElement. r=sicking 2012-08-23 22:37:31 +04:00			`return NS_OK;`
			`}`

			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::GetCapability(uint32_t* aCapability) {`
			`*aCapability = mCapability;`
Checking in permissions rewrite phase 1 (troop deployment in the permission gulf). Bug 191380, patch by mvl@exedo.nl (Michiel van Leeuwen), r=dwitte@stanford.edu, sr=darin. 2003-03-22 04:24:51 +03:00			`return NS_OK;`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00			`}`

remove cid's/contractid's and factory constructors for nsCookie and nsPermission, since these objects shouldn't be instantiable. b=209506, r=darin/mvl, sr=bz 2003-06-18 04:52:59 +04:00			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::GetExpireType(uint32_t* aExpireType) {`
			`*aExpireType = mExpireType;`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00			`return NS_OK;`
			`}`

remove cid's/contractid's and factory constructors for nsCookie and nsPermission, since these objects shouldn't be instantiable. b=209506, r=darin/mvl, sr=bz 2003-06-18 04:52:59 +04:00			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::GetExpireTime(int64_t* aExpireTime) {`
			`*aExpireTime = mExpireTime;`
bug 46783, reorg cookies module for embedding, r=valeski, sr=alecf 2001-03-29 06:11:48 +04:00			`return NS_OK;`
			`}`
Bug 519263 - Session and time-based expiration for permissions in permissions manager. r=dwitte, sr=mrbkap. First patch! Yay!! 2009-10-17 01:01:04 +04:00
			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::Matches(nsIPrincipal* aPrincipal, bool aExactHost,`
			`bool* aMatches) {`
			`NS_ENSURE_ARG_POINTER(aPrincipal);`
			`NS_ENSURE_ARG_POINTER(aMatches);`

			`*aMatches = false;`

Bug 1302047 - Ignore userContextId and firstPartyDomain when matching permissions. r=baku --HG-- extra : rebase_source : da81c21da92810d808ebe865a456cc9d04058ce3 2016-09-20 11:35:21 +03:00			`nsCOMPtr<nsIPrincipal> principal =`
			`mozilla::BasePrincipal::Cast(aPrincipal)`
			`->CloneStrippingUserContextIdAndFirstPartyDomain();`

			`if (!principal) {`
			`*aMatches = false;`
			`return NS_OK;`
			`}`

Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`// If the principals are equal, then they match.`
Bug 1302047 - Ignore userContextId and firstPartyDomain when matching permissions. r=baku --HG-- extra : rebase_source : da81c21da92810d808ebe865a456cc9d04058ce3 2016-09-20 11:35:21 +03:00			`if (mPrincipal->Equals(principal)) {`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`*aMatches = true;`
			`return NS_OK;`
			`}`

Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`// If we are matching with an exact host, we're done now - the permissions`
			`// don't match otherwise, we need to start comparing subdomains!`
			`if (aExactHost) {`
			`return NS_OK;`
			`}`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00
Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`// Compare their OriginAttributes`
Bug 1328653 - Merging all the various *OriginAttributes to just one, r=huseby 2017-01-12 19:38:48 +03:00			`const mozilla::OriginAttributes& theirAttrs =`
			`principal->OriginAttributesRef();`
			`const mozilla::OriginAttributes& ourAttrs = mPrincipal->OriginAttributesRef();`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00
Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`if (theirAttrs != ourAttrs) {`
			`return NS_OK;`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`}`

			`nsCOMPtr<nsIURI> theirURI;`
Bug 1302047 - Ignore userContextId and firstPartyDomain when matching permissions. r=baku --HG-- extra : rebase_source : da81c21da92810d808ebe865a456cc9d04058ce3 2016-09-20 11:35:21 +03:00			`nsresult rv = principal->GetURI(getter_AddRefs(theirURI));`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`NS_ENSURE_SUCCESS(rv, rv);`

			`nsCOMPtr<nsIURI> ourURI;`
			`rv = mPrincipal->GetURI(getter_AddRefs(ourURI));`
			`NS_ENSURE_SUCCESS(rv, rv);`

Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`// Compare schemes`
			`nsAutoCString theirScheme;`
			`rv = theirURI->GetScheme(theirScheme);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`nsAutoCString ourScheme;`
			`rv = ourURI->GetScheme(ourScheme);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`if (theirScheme != ourScheme) {`
			`return NS_OK;`
			`}`

			`// Compare ports`
			`int32_t theirPort;`
			`rv = theirURI->GetPort(&theirPort);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`int32_t ourPort;`
			`rv = ourURI->GetPort(&ourPort);`
			`NS_ENSURE_SUCCESS(rv, rv);`

			`if (theirPort != ourPort) {`
			`return NS_OK;`
			`}`

			`// Check if the host or any subdomain of their host matches.`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsAutoCString theirHost;`
			`rv = theirURI->GetHost(theirHost);`
			`if (NS_FAILED(rv) \|\| theirHost.IsEmpty()) {`
			`return NS_OK;`
			`}`

			`nsAutoCString ourHost;`
			`rv = ourURI->GetHost(ourHost);`
			`if (NS_FAILED(rv) \|\| ourHost.IsEmpty()) {`
			`return NS_OK;`
			`}`

			`nsCOMPtr<nsIEffectiveTLDService> tldService =`
			`do_GetService(NS_EFFECTIVETLDSERVICE_CONTRACTID);`
			`if (!tldService) {`
			`NS_ERROR("Should have a tld service!");`
			`return NS_ERROR_FAILURE;`
			`}`

Bug 1165263 - Part 1: Update nsPermissionManager to use origins instead of hosts internally, r=ehsan 2015-06-16 22:27:45 +03:00			`// This loop will not loop forever, as GetNextSubDomain will eventually fail`
			`// with NS_ERROR_INSUFFICIENT_DOMAIN_LEVELS.`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`while (theirHost != ourHost) {`
			`rv = tldService->GetNextSubDomain(theirHost, theirHost);`
			`if (NS_FAILED(rv)) {`
			`if (rv == NS_ERROR_INSUFFICIENT_DOMAIN_LEVELS) {`
			`return NS_OK;`
			`} else {`
			`return rv;`
			`}`
			`}`
			`}`

			`*aMatches = true;`
Bug 519263 - Session and time-based expiration for permissions in permissions manager. r=dwitte, sr=mrbkap. First patch! Yay!! 2009-10-17 01:01:04 +04:00			`return NS_OK;`
			`}`

			`NS_IMETHODIMP`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00			`nsPermission::MatchesURI(nsIURI* aURI, bool aExactHost, bool* aMatches) {`
			`NS_ENSURE_ARG_POINTER(aURI);`

Bug 1328653 - Merging all the various *OriginAttributes to just one, r=huseby 2017-01-12 19:38:48 +03:00			`mozilla::OriginAttributes attrs;`
Bug 1165272 - Part 2: replace getNoAppCodebasePrincipal. r=bholley 2015-08-18 10:01:42 +03:00			`nsCOMPtr<nsIPrincipal> principal =`
			`mozilla::BasePrincipal::CreateCodebasePrincipal(aURI, attrs);`
			`NS_ENSURE_TRUE(principal, NS_ERROR_FAILURE);`
Bug 1173523 - Part 1: Expose an nsIPrincipal from nsIPermission rather than a host string, appId, and isInBrowserElement, r=ehsan 2015-06-10 19:48:22 +03:00
			`return Matches(principal, aExactHost, aMatches);`
Bug 519263 - Session and time-based expiration for permissions in permissions manager. r=dwitte, sr=mrbkap. First patch! Yay!! 2009-10-17 01:01:04 +04:00			`}`