Support socket endpoint permissions for AppsV2 Socket API.

chrome/common/extensions/permissions/permission_set.h

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef CHROME_COMMON_EXTENSIONS_PERMISSIONS_PERMISSION_SET_H_
 #define CHROME_COMMON_EXTENSIONS_PERMISSIONS_PERMISSION_SET_H_
 
 #include <map>
 #include <set>
 #include <string>
 #include <vector>
 
 #include "base/gtest_prod_util.h"
 #include "base/memory/ref_counted.h"
 #include "base/memory/singleton.h"
 #include "base/string16.h"
 #include "chrome/common/extensions/extension.h"
 #include "chrome/common/extensions/permissions/api_permission.h"
+#include "chrome/common/extensions/permissions/api_permission_set.h"
 #include "chrome/common/extensions/permissions/permission_message.h"
 #include "chrome/common/extensions/url_pattern_set.h"
 
 namespace extensions {
 
 // The PermissionSet is an immutable class that encapsulates an
 // extension's permissions. The class exposes set operations for combining and
 // manipulating the permissions.
 class PermissionSet
     : public base::RefCountedThreadSafe<PermissionSet> {
@@ skipping 57 matching lines @@
   // as strings). The set of permission messages shown varies by extension type.
   std::vector<string16> GetWarningMessages(Extension::Type extension_type)
       const;
 
   // Returns true if this is an empty set (e.g., the default permission set).
   bool IsEmpty() const;
 
   // Returns true if the set has the specified API permission.
   bool HasAPIPermission(APIPermission::ID permission) const;
 
+  // Returns true if the set allows the given permission with the default
+  // permission detal.
+  bool CheckAPIPermission(APIPermission::ID permission) const;
+
+  // Returns true if the set allows the given permission and permission detail.
+  bool CheckAPIPermissionWithDetail(APIPermission::ID permission,
+      const APIPermissionDetail::CheckParam* detail) const;
+
   // Returns true if the permissions in this set grant access to the specified
   // |function_name|.
   bool HasAccessToFunction(const std::string& function_name) const;
 
   // Returns true if this includes permission to access |origin|.
   bool HasExplicitAccessToOrigin(const GURL& origin) const;
 
   // Returns true if this permission set includes access to script |url|.
   bool HasScriptableAccessToURL(const GURL& url) const;
 
@@ skipping 29 matching lines @@
   FRIEND_TEST_ALL_PREFIXES(PermissionsTest,
                            GetDistinctHostsForDisplay_NetIs2ndBestRcd);
   FRIEND_TEST_ALL_PREFIXES(PermissionsTest,
                            GetDistinctHostsForDisplay_OrgIs3rdBestRcd);
   FRIEND_TEST_ALL_PREFIXES(PermissionsTest,
                            GetDistinctHostsForDisplay_FirstInListIs4thBestRcd);
   friend class base::RefCountedThreadSafe<PermissionSet>;
 
   ~PermissionSet();
 
+  void AddAPIPermission(APIPermission::ID id);
+
   static std::set<std::string> GetDistinctHosts(
       const URLPatternSet& host_patterns,
       bool include_rcd,
       bool exclude_file_scheme);
 
   // Initializes the set based on |extension|'s manifest data.
   void InitImplicitExtensionPermissions(const extensions::Extension* extension);
 
   // Adds permissions implied independently of other context.
   void InitImplicitPermissions();
@@ skipping 31 matching lines @@
   // TODO(jstritar): Rename to "user_script_hosts_"?
   URLPatternSet scriptable_hosts_;
 
   // The list of hosts this effectively grants access to.
   URLPatternSet effective_hosts_;
 };
 
 }  // namespace extensions
 
 #endif  // CHROME_COMMON_EXTENSIONS_PERMISSIONS_PERMISSION_SET_H_