mark/theia-code-os
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity
Files
8bb511014885a4003f6e178efdd7cfa6d6d464cc
theia-code-os/packages/mini-browser/src/browser/mini-browser-frontend-security-warnings.ts
mawkone 8bb5110148
Some checks failed
Playwright Tests / Playwright Tests (ubuntu-22.04, Node.js 22.x) (push) Has been cancelled
Details
3PP License Check / 3PP License Check (11, 22.x, ubuntu-22.04) (push) Has been cancelled
Details
Publish packages to NPM / Perform Publishing (push) Has been cancelled
Details
deploy: current vibn theia state 
Made-with: Cursor
2026-02-27 12:01:08 -08:00

60 lines
2.8 KiB
TypeScript
Raw Blame History

// *****************************************************************************
// Copyright (C) 2021 Ericsson and others.
//
// This program and the accompanying materials are made available under the
// terms of the Eclipse Public License v. 2.0 which is available at
// http://www.eclipse.org/legal/epl-2.0.
//
// This Source Code may also be made available under the following Secondary
// Licenses when the conditions for such availability set forth in the Eclipse
// Public License v. 2.0 are satisfied: GNU General Public License, version 2
// with the GNU Classpath Exception which is available at
// https://www.gnu.org/software/classpath/license.html.
//
// SPDX-License-Identifier: EPL-2.0 OR GPL-2.0-only WITH Classpath-exception-2.0
// *****************************************************************************
import { MessageService } from '@theia/core';
import { Dialog, FrontendApplicationContribution } from '@theia/core/lib/browser';
import { FrontendApplicationConfigProvider } from '@theia/core/lib/browser/frontend-application-config-provider';
import { nls } from '@theia/core/lib/common/nls';
import { WindowService } from '@theia/core/lib/browser/window/window-service';
import { inject, injectable } from '@theia/core/shared/inversify';
import { MiniBrowserEndpoint } from '../common/mini-browser-endpoint';
import { MiniBrowserEnvironment } from './environment/mini-browser-environment';
@injectable()
export class MiniBrowserFrontendSecurityWarnings implements FrontendApplicationContribution {
@inject(WindowService)
protected windowService: WindowService;
@inject(MessageService)
protected messageService: MessageService;
@inject(MiniBrowserEnvironment)
protected miniBrowserEnvironment: MiniBrowserEnvironment;
initialize(): void {
this.checkHostPattern();
}
protected async checkHostPattern(): Promise<void> {
if (FrontendApplicationConfigProvider.get()['warnOnPotentiallyInsecureHostPattern'] === false) {
return;
}
const hostPattern = await this.miniBrowserEnvironment.hostPatternPromise;
if (hostPattern !== MiniBrowserEndpoint.HOST_PATTERN_DEFAULT) {
const goToReadme = nls.localize('theia/webview/goToReadme', 'Go To README');
const message = nls.localize('theia/webview/messageWarning', '\
The {0} endpoint\'s host pattern has been changed to `{1}`; changing the pattern can lead to security vulnerabilities. \
See `{2}` for more information.', 'mini-browser', hostPattern, '@theia/mini-browser/README.md');
this.messageService.warn(message, Dialog.OK, goToReadme).then(action => {
if (action === goToReadme) {
this.windowService.openNewWindow('https://www.npmjs.com/package/@theia/mini-browser', { external: true });
}
});
}
}
}
Reference in New Issue View Git Blame Copy Permalink