{"id":1715,"date":"2022-08-10T12:19:16","date_gmt":"2022-08-10T10:19:16","guid":{"rendered":"http:\/\/blogs.igalia.com\/jfernandez\/?p=1715"},"modified":"2022-08-31T20:06:24","modified_gmt":"2022-08-31T18:06:24","slug":"new-custom-handlers-component-for-chrome","status":"publish","type":"post","link":"https:\/\/blogs.igalia.com\/jfernandez\/2022\/08\/10\/new-custom-handlers-component-for-chrome\/","title":{"rendered":"New Custom Handlers component for Chrome"},"content":{"rendered":"

The HTML Standard section on Custom Handlers describes the procedure to register custom protocol handlers for URLs with specific schemes. When a URL is followed, the protocol dictates which part of the system handles it by consulting registries. In some cases, handlers may fall to the OS level and and launch a desktop application (eg. mailto:\/\/ may launch a native application) or, the browser may redirect the request to a different HTTP(S) URL (eg. mailto:\/\/ can go to gmail).<\/p>\n

There are multiple ways to invoke the registerProtocolHandler<\/em> method from the HTML API<\/em>. The most common is through Browser Extensions, or add-ons, where the user must install third-party software to add or modify a browser’s feature. However, this approach puts on the users the responsibility of ensuring the extension is secure and that it respects their privacy. Ideally, downstream browsers could ship built-in protocol handlers that take this load off of users, but this was previously difficult.<\/p>\n

During the last years Igalia<\/a> and Protocol Labs<\/a> have been working on improving the support of this HTML API<\/em> in several of the main web engines, with the long term goal of getting the IPFS<\/em> protocol a first-class member inside the most relevant browsers.<\/p>\n

In this post I’m going to explain the most recent improvements, especially in Chrome, and some side advantages for Chromium embedders that we got on the way.<\/p>\n

Componentization of the Custom Handler logic<\/h2>\n

The first challenge faced by Chromium-based browsers wishing to add support for a new protocol was the architecture. Most of the logic and relevant codebase lived in the \/\/chrome<\/em> layer. Thus, any intent to introduce a behavior change on this logic would require a direct fork and patch the \/\/chrome<\/em> layers with the new logic. The design wasn’t defined to allow Chrome embedders to extend it with new features<\/p>\n

The Chromium project provides a Public Content API to allow embedders reusing a great part of the browser’s common logic and to implement, if needed, specific behavior though the specialization of these APIs. These would seem to be the ideal way of extending the browser capabilities to handle new protocols. However, accessing \/\/chrome<\/em> from any layer (eg. \/\/content<\/em> or \/\/components<\/em>) is forbidden and constitutes a layering violation.<\/p>\n

After some discussion with Chrome engineers (special thanks to Kuniko Yasuda and Colin Blundell) we decided to move the Protocol Handlers logic to the \/\/components<\/em> layer and create a new Custom Handlers component.<\/p>\n

The following diagram provides a high-level overview of the architectural change:<\/p>\n

\"Custom<\/a>
Changes in the Chrome’s component design<\/figcaption><\/figure>\n

The new component makes the Protocol Handler logic Chrome independent<\/strong>, bringing us the possibility of using the Content Public API to introduce the mentioned behavior changes, as we’ll see later in this post.<\/p>\n

Only the registry’s Delegate and the Factory classes will remain in the \/\/chrome<\/em> layer.<\/p>\n

The Delegate<\/strong> class was defined to provide OS integration, like setting as default browser, which needs to access the underlying operating systems interfaces. It also deals with other browser-specific logic, like Profiles. With the new componentized<\/em> design, embedders may provide their own Delegate implementations with different strategies to interact with the operating system’s desktop or even support additional flavors.<\/p>\n

On the other hand, the Factory<\/strong> (in addition to the creation of the appropriated Delegate’s instance) provides a BrowserContext<\/em> that allows the registry to operate under Incognito mode.<\/p>\n

Lets now get a deeper look into the component, trying to understand the responsibilities of each class. The following class diagram illustrates the multi-process architecture of the Custom Handler logic:<\/p>\n

\"Class<\/a>
Multi-process architecture class diagram<\/figcaption><\/figure>\n

The ProtocolHandlerRegistry<\/em> class has been modified to allow operating without user preferences storage; this is particularly useful to move most of the browser tests to the new component and avoid the dependency with the prefs<\/em> and user_prefs<\/em> components (eg. testing). In this scenario the registered handlers will be stored in memory only.<\/p>\n

It’s worth mentioning that as part of this architectural change, I’ve applied some code cleanup and refactoring, following the policies dictated in the base::Value Code Health<\/a> task-force. Some examples:<\/p>\n