Adds media publishers support #11727
Conversation
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
5 times, most recently
from
9dd73af
to
298c7b5
Compare
app/browser/api/ledger.js
Outdated
| @@ -44,6 +44,7 @@ const request = require('../../../js/lib/request') | |||
| const ledgerUtil = require('../../common/lib/ledgerUtil') | |||
| const tabState = require('../../common/state/tabState') | |||
| const pageDataUtil = require('../../common/lib/pageDataUtil') | |||
| const ledgerVideoCahce = require('../../common/cache/ledgerVideoCache') | |||
There was a problem hiding this comment.
s/ledgerVideoCahce/ledgerVideoCache/g
app/browser/api/ledger.js
Outdated
| // still generate publisherURL. | ||
| data.publisherURL = (result.protocol || 'http:') + '//' + result.publisherKey | ||
|
|
||
| data.publisherURL = result.publisherURL || (result.protocol || 'http:') + '//' + result.publisherKey |
There was a problem hiding this comment.
would be nice to use parens to make this clear- I think you're meaning it to be:
result.publisherURL || ((result.protocol || 'http:') + '//' + result.publisherKey)
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
from
6fc982e
to
efa3dd0
Compare
|
while testing, I got this crash. I was about 30 seconds into a video. The crash caused the browser to stop responding (I couldn't switch tabs, etc)... but the current tab behaved properly |
|
@bsclifton this is a new thing that I added for tests, apparently I broke something 😄 |
|
@bsclifton ok tests are fixed and functionality should be working again. Please re-test |
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
from
efa3dd0
to
d3fb149
Compare
|
Happy path is working great! This is awesome As shared on Slack, with an upgraded profile (upgraded from Bitcoin => BAT) I got the following: |
|
OK noticed a few bad ones here- it seems that:
|
| * License, v. 2.0. If a copy of the MPL was not distributed with this file, | ||
| * You can obtain one at http://mozilla.org/MPL/2.0/. */ | ||
|
|
||
| const mapValuesByKeys = require('../../../js/lib/functional').mapValuesByKeys |
There was a problem hiding this comment.
I believe there is a performance impact by using this approach (using mapValuesByKeys)... Going forward, I think it might be better to just assign a value directly. For example:
const providers = {
YOUTUBE: 'youtube.com',
TWITCH: 'twitch.tv'
//... etc ...
}There was a problem hiding this comment.
I used what we have now for other constants, but I can change it
There was a problem hiding this comment.
replaced with string
app/common/lib/ledgerUtil.js
Outdated
| return parseInt(time) | ||
| } | ||
|
|
||
| const isMediaProvider = (url) => { |
There was a problem hiding this comment.
Would this be better named as getMediaProvider?
app/common/lib/ledgerUtil.js
Outdated
| return duration | ||
| } | ||
|
|
||
| const getYoutubeDuration = (data) => { |
There was a problem hiding this comment.
nit: to respect the brand name, it should be YouTube (ex: getYouTubeDuration)
|
If I play a few videos at once, the time for each is recorded (even if it's not the active tab). I think this is OK, however the ones which are not active have their view count incremented each time the heartbeat comes in |
| @@ -926,7 +926,8 @@ module.exports.defaultAppState = () => { | |||
| }, | |||
| cache: { | |||
| bookmarkLocation: undefined, | |||
| bookmarkOrder: {} | |||
| bookmarkOrder: {}, | |||
| ledgerVideos: {} | |||
There was a problem hiding this comment.
We need to add deep merge for state migration. Suggestion by @bsclifton https://github.com/KyleAMathews/deepmerge
There was a problem hiding this comment.
will add it after PR will be confirmed
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
from
d3fb149
to
6ccd7fb
Compare
|
This should not be merged without security review, so blocked on https://github.com/brave/internal/issues/141 |
app/browser/api/ledger.js
Outdated
| // media publisher | ||
| if (result.faviconName) { | ||
| const on = locale.translation('on').toLowerCase() | ||
| data.siteName = `${result.faviconName} ${on} ${result.providerName}` |
There was a problem hiding this comment.
[minor] this might cause the wrong word order in some languages. i think we support l10n parameters to solve this problem, but maybe not in the locale module
app/browser/api/ledger.js
Outdated
| // still generate publisherURL. | ||
| data.publisherURL = (result.protocol || 'http:') + '//' + result.publisherKey | ||
|
|
||
| data.publisherURL = result.publisherURL || ((result.protocol || 'http:') + '//' + result.publisherKey) |
There was a problem hiding this comment.
should probably use https instead of http by default since that is what https://github.com/brave-intl/bat-publisher/blob/master/index.js#L100 does
| @@ -853,7 +860,7 @@ const excludeP = (publisherKey, callback) => { | |||
| return done(err, result) | |||
| } | |||
|
|
|||
| let props = ledgerPublisher.getPublisherProps('https://' + publisherKey) | |||
| let props = ledgerPublisher.getPublisherProps(publisherKey) | |||
There was a problem hiding this comment.
where is publisherKey ultimately generated? just making sure it has some kind of input validation
There was a problem hiding this comment.
we get it from bat-publisher library https://github.com/brave/browser-laptop/pull/11727/files#diff-3cdfdb124f718787d584e9e2b82fcedcR2505, with ledgerPublisher.getMedia.getPublisherFromMediaProps
There was a problem hiding this comment.
in https://github.com/brave-intl/bat-publisher/blob/d896a93465df57b3cca227b90530f0b40044d5fc/getMedia.js#L91, where does author_url come from?
There was a problem hiding this comment.
In https://github.com/brave-intl/bat-publisher/blob/d896a93465df57b3cca227b90530f0b40044d5fc/getMedia.js#L77 we call publisher oembed, which is defined here https://github.com/brave-intl/bat-publisher/blob/d896a93465df57b3cca227b90530f0b40044d5fc/media/providers.json#L7 (for youtube is https://www.youtube.com/oembed?url=https://www.youtube.com/watch?v=kLiLOkzLetE) and we get back something like this
{"html":"\u003ciframe width=\"480\" height=\"270\" src=\"https:\/\/www.youtube.com\/embed\/kLiLOkzLetE?feature=oembed\" frameborder=\"0\" gesture=\"media\" allowfullscreen\u003e\u003c\/iframe\u003e","title":"This Is Brave","thumbnail_height":360,"version":"1.0","provider_name":"YouTube","thumbnail_width":480,"width":480,"author_name":"Brave","author_url":"https:\/\/www.youtube.com\/channel\/UCFNTTISby1c_H-rm5Ww5rZg","height":270,"thumbnail_url":"https:\/\/i.ytimg.com\/vi\/kLiLOkzLetE\/hqdefault.jpg","provider_url":"https:\/\/www.youtube.com\/","type":"video"}
which contains author_url
There was a problem hiding this comment.
i think https://github.com/brave-intl/bat-publisher/blob/d896a93465df57b3cca227b90530f0b40044d5fc/getMedia.js#L91 needs to validate that author_url is a valid URL. this is easy because if not then parts will be null
There was a problem hiding this comment.
https://github.com/brave-intl/bat-publisher/blob/d896a93465df57b3cca227b90530f0b40044d5fc/index.js#L101 should also return immediately if props is null
There was a problem hiding this comment.
these last two are fixed in bat-publisher@1.2.1 and bat-client@1.4.2
There was a problem hiding this comment.
versions updated in this PR
app/browser/api/ledger.js
Outdated
| ctx.RLD = tldjs.getSubdomain(ctx.host) | ||
| ctx.QLD = ctx.RLD ? underscore.last(ctx.RLD.split('.')) : '' | ||
| if (publisher.publisherURL) ctx.URL = publisher.publisherURL | ||
| if (!ctx.URL) ctx.URL = (publisher.get('protocol') || 'http:') + '//' + publisherKey |
There was a problem hiding this comment.
same as above for 'https' vs 'http'
| providerName: type | ||
| } | ||
|
|
||
| ledgerPublisher.getMedia.getPublisherFromMediaProps(mediaProps, options, (error, response) => { |
There was a problem hiding this comment.
- bat-publisher should throw an error if the media URL protocol is not "https:"
- it appears
bat-publisheris making a call to a youtube.com page from the browser main process, scraping and parsing the page HTML, and extracting page data from it. from a security perspective, it would be much better to do this in a page content script that runs when the user visits a youtube page (ex: how we currently extract favicons from publisher pages). https://github.com/brave-intl/bat-publisher/blob/d896a93465df57b3cca227b90530f0b40044d5fc/getMedia.js#L103
There was a problem hiding this comment.
-
bat-publisheris being passed a URL that the browser is playing. whether it ishttp?is immaterial. the goal is to look at the URL string and figure out where to look for the oembed data. -
i think that this is a worthy future, but not essential at this point. it is certainly good to have routines that parse data run in a separate context. it's not clear to me why that is "more necessary" in this case. we can open up an issue for this, and when we do, it would be worthwhile to see what other cases might exist!
There was a problem hiding this comment.
- is an easy change and should be done for paranoia (AKA security in depth) in case there's ever code that looks at the URL and fetches it.
I've opened a follow up issue for 2: #11889
There was a problem hiding this comment.
@mrose17 I think comment 1 is still unaddressed? I'd also strongly prefer we address 2 before moving on. The follow up issue seems to be to address the general case, but no reason for us to not adhere to the correct practices now.
There was a problem hiding this comment.
@mrose17 I'm going to hold off on merge until @evq 's concern can be addressed (and we have a sign off in https://github.com/brave/internal/issues/141). Let us know if we need to update libs after that is addressed
There was a problem hiding this comment.
-
is addressed. we aren't opening a URL, we are parsing it in order to find an oembed provider. if the browser decides to play it and then ask for information, then the module will provide the information. however, in the interest of moving things along, i have pushed
bat-publisher@1.2.3that makes this change. -
it is not a simple thing to make this change (it has to be made in the browser). nor am i convinced that it makes sense to require this code be held to a standard higher than any other code in the browser. as i noted in my comment.
everything has a cost. i suppose we can address 1, because it's a small change, even if i do view it as unnecessary. in addressing 2, it has a large cost (i already researched it with @NejcZdovc) and addresses a theoretical concern. there is significant cost to that we will not be able to merge this upcoming week. i don't have an issue with the browser folks reviewing the issue that @diracdeltas created after this merge, and having the same standard applied to the entire browser. i most certainly have an issue having this new standard being applied in this context and in this timeline.
| "bignumber.js": "^4.0.4", | ||
| "bloodhound-js": "brave/bloodhound", | ||
| "clipboard-copy": "^1.0.0", | ||
| "compare-versions": "^3.0.1", | ||
| "deepmerge": "^2.0.1", |
There was a problem hiding this comment.
i don't see anything obviously wrong with deepmerge but fwiw we use lodash.merge in sync. i wonder if @ayumi knows why?
There was a problem hiding this comment.
no particular reason. lodash seemed well maintained.
There was a problem hiding this comment.
we can switch to loadash as well
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
from
6594a55
to
7eae0b7
Compare
|
There's a security issue in https://github.com/brave-intl/bat-publisher/blob/master/getMedia.js#L55 say that rule.domain is youtube.com, then |
Resolves brave#11851 Auditors: Test Plan:
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
from
7eae0b7
to
7e7ca0f
Compare
| @@ -107,6 +110,38 @@ underscore.keys(fileTypes).forEach((fileType) => { | |||
| }) | |||
| signatureMax = Math.ceil(signatureMax * 1.5) | |||
|
|
|||
| if (ipc) { | |||
There was a problem hiding this comment.
Accidentally removed in #11882
NejcZdovc
force-pushed
the
feature/youtube-ledger
branch
from
7e7ca0f
to
cf2e3b2
Compare
Addressing feedback found in security review (thanks, @mrose17) brave#11727 (comment) Auditors: @evq, @NejcZdovc
Adds media publishers support
Adds media publishers support
|
master fafa483 |
Adds media publishers support
|
@bsclifton merged in 0.19 2d55627 |
Fix #11851
Submitter Checklist:
git rebase -ito squash commits (if needed).Test Plan:
Reviewer Checklist:
Tests