apunkt/rowboat
1
0
Fork 0
mirror of https://github.com/rowboatlabs/rowboat.git synced 2026-05-02 11:52:38 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

Merge b979bddf48 into 50df9ed178

Browse source
This commit is contained in:
Junghwan 2026-04-18 00:47:43 +09:00 committed by GitHub
commit db4b3b3fea
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 14 additions and 9 deletions
Download patch file Download diff file Expand all files Collapse all files

23
apps/x/apps/main/src/main.ts
View file

@ -116,21 +116,26 @@ protocol.registerSchemesAsPrivileged([
},
]);
const ALLOWED_SESSION_PERMISSIONS = new Set(["media", "display-capture", "clipboard-read", "clipboard-sanitized-write"]);
const APP_SESSION_PERMISSIONS = new Set(["media", "display-capture", "clipboard-read", "clipboard-sanitized-write"]);
const BROWSER_SESSION_PERMISSIONS = new Set(["clipboard-read", "clipboard-sanitized-write"]);
function configureSessionPermissions(targetSession: Session): void {
function configureSessionPermissions(targetSession: Session, allowedPermissions: Set<string>): void {
targetSession.setPermissionCheckHandler((_webContents, permission) => {
return ALLOWED_SESSION_PERMISSIONS.has(permission);
return allowedPermissions.has(permission);
});
targetSession.setPermissionRequestHandler((_webContents, permission, callback) => {
callback(ALLOWED_SESSION_PERMISSIONS.has(permission));
callback(allowedPermissions.has(permission));
});
// Auto-approve display media requests and route system audio as loopback.
// Electron requires a video source in the callback even if we only want audio.
// We pass the first available screen source; the renderer discards the video track.
// Only sessions that explicitly allow display-capture should receive an
// auto-approved source. Embedded browser tabs use a separate session with a
// narrower permission set.
targetSession.setDisplayMediaRequestHandler(async (_request, callback) => {
if (!allowedPermissions.has("display-capture")) {
callback({});
return;
}
const sources = await desktopCapturer.getSources({ types: ['screen'] });
if (sources.length === 0) {
callback({});
@ -159,8 +164,8 @@ function createWindow() {
},
});
configureSessionPermissions(session.defaultSession);
configureSessionPermissions(session.fromPartition(BROWSER_PARTITION));
configureSessionPermissions(session.defaultSession, APP_SESSION_PERMISSIONS);
configureSessionPermissions(session.fromPartition(BROWSER_PARTITION), BROWSER_SESSION_PERMISSIONS);
// Show window when content is ready to prevent blank screen
win.once("ready-to-show", () => {