Pass XDG_ACTIVATION_TOKEN to apps launched via launch_app_env
#3703
Conversation
There was a problem hiding this comment.
Drilling into the frontend implementation from the Server abstraction is placing logic in the wrong place, fragile when that implementation changes, and probably won't work.
We first need to break out the token issue & validation logic from xdg-activation so that it can meet the new requirements. (With this scenario there is no "requester" to check still has focus)
src/server/server.cpp
Outdated
| { | ||
| if (auto const config = self->server_config) | ||
| { | ||
| return config->the_token_authority()->issue_token({}); |
There was a problem hiding this comment.
Not sure if this is better or I should add an overload with no parameters
tarek-y-ismail
force-pushed
the
pass-xdg-activation-token-when-launching-apps
branch
from
852ccf5 to
6994bc1
Compare
There was a problem hiding this comment.
Broadly, I think the TokenAuthority is kinda half way there. It's not actually an authority - code can't use it to check if a Token is valid, and that's tracked separately by XdgActivationV1. This is also why there's spooky action-at-a-distance in XdgActivationV1::invalidate_*() - you're maintaining a second list of valid tokens, mutating XdgActivationV1::pending_tokens by calling token_authority->revoke_token(...).
I think this would be simpler if:
a) The TokenAuthority was the... authority for whether a token was valid or not, and
b) Token was treated more as an opaque... token, rather than immediately decaying into a std::string and all the interfaces taking that.
Closes #2586. Adds a new constructor to `FloatingWindowManagerPolicy` to control focus stealing prevention. This in a nutshell stops new windows from being focused and raised. When used with xdg-activation-v1, this improves security as external actors can't just steal focus by opening a new window (in addition to the niceties xdg-activation-v1 adds to usability). TODO: - [ ] ~Fix window offsetting. This is built off the position of the focused window, so all windows after the second one open in the same (x,y) position.~ Split off to #3695 - [ ] ~Fix windows closing in the order of opening instead of front to back. see #3693 (comment) Moved to #3694 - [ ] ~Make sure Xwayland applications work properly. My focus has been on Wayland applications so far.~ Xwayland doesn't seem to support xdg-activation at the moment? - [x] Alt + tab predictably broken :/ Have to focus other applications before they work with alt + tab - [x] Decorations are not pushed behind the focused window - [ ] ~Need some way to focus applications launched via Mir (Ctrl-Alt+t/T for example)~ Will be in its own PR (#3703)
|
TIL that github's conflict editor merges (there's probably a rebase option that I missed) |
|
(With the symbols.map fixed) From Gnome:
Expect: |
tarek-y-ismail
force-pushed
the
pass-xdg-activation-token-when-launching-apps
branch
from
a96594e to
1d6a14f
Compare
|
Hopefully both issues should be fixed now (facepalm). I'm not very sure about the symbol stuff. I should really spend some time to understand it I recommend testing with firefox and kgx. gnome-terminal doesn't seem to request activation. Edit: To save you some frustration, here's a list of apps that request activation and others that don't: Applications that request activation:
Applications that DO NOT request activation:
|
There was a problem hiding this comment.
I think this is the usecase the PR is intended to address:
From Gnome:
1. `miral-app --focus-stealing-prevention true` 2. `Ctrl-Alt-X` to launch `xterm` 3. `Ctrl-Alt-Shift-T` to launch `gnome-terminal`Expect:
gnome-terminalgets focus and raised
Actual:xtermremains on top with focus
Same with:
miral-app --focus-stealing-prevention true --shell-terminal-emulator=xfce4-terminal
miral-app --focus-stealing-prevention true --shell-terminal-emulator=qterminal
So it isn't just gnome-terminal being weird
gnome terminal does request activation: But that's not the token in |
tarek-y-ismail
force-pushed
the
pass-xdg-activation-token-when-launching-apps
branch
from
4399ca1 to
e4d92be
Compare
There was a problem hiding this comment.
I am happy now, but I want to leave it up to @AlanGriffiths for any final thoughts and words!
src/server/shell/token_authority.cpp
Outdated
| } | ||
|
|
||
| msh::TokenAuthority::TokenAuthority(std::shared_ptr<MainLoop>&& main_loop) : | ||
| main_loop{main_loop} |
There was a problem hiding this comment.
| main_loop{main_loop} | |
| main_loop{std::move(main_loop)} |
There was a problem hiding this comment.
Borks the tests because the main loop then points to the void. Not sure why miral-app worked fine though...
There was a problem hiding this comment.
Then the tests are wrong:
struct TestTokenAuthority : testing::Test
{
TestTokenAuthority() :
clock{std::make_shared<mir::time::SteadyClock>()},
main_loop{std::make_shared<mir::GLibMainLoop>(clock)},
token_authority{std::forward<std::shared_ptr<mir::MainLoop>>(main_loop)},
main_loop_thread{
[this]()
{
main_loop->stop();
},
[this]()
{
main_loop->run();
}}
{
}
std::shared_ptr<mir::time::SteadyClock> clock;
std::shared_ptr<mir::MainLoop> main_loop;
mir::shell::TokenAuthority token_authority;
mir::test::AutoUnblockThread main_loop_thread;
};
You use "perfect forwarding" to move from main_loop and transfer ownership. (If you made members const the compiler would know you don't want this)
There was a problem hiding this comment.
D'oh! Const correctness bites me again...
- Remove comment in `get_token_for_string` in favor of explaining things in `generate_token` - Reduce scope of variables in `revoke_token` to the relevant if statement - Include `token_authority.h` in `SHELL_SOURCES` - Use seconds instead of milliseconds for token timeout since milliseconds weren't offering anything extra (other than the extra zeroes) Co-authored-by: Alan Griffiths <[email protected]>
tarek-y-ismail
force-pushed
the
pass-xdg-activation-token-when-launching-apps
branch
from
4d9ba32 to
94556f0
Compare
…en-launching-apps
|
Had a small accident where I merged the testing PR and followed that by a force push without pulling first. Should alright now |
src/server/shell/token_authority.cpp
Outdated
| } | ||
|
|
||
| msh::TokenAuthority::TokenAuthority(std::shared_ptr<MainLoop>&& main_loop) : | ||
| main_loop{main_loop} |
There was a problem hiding this comment.
Then the tests are wrong:
struct TestTokenAuthority : testing::Test
{
TestTokenAuthority() :
clock{std::make_shared<mir::time::SteadyClock>()},
main_loop{std::make_shared<mir::GLibMainLoop>(clock)},
token_authority{std::forward<std::shared_ptr<mir::MainLoop>>(main_loop)},
main_loop_thread{
[this]()
{
main_loop->stop();
},
[this]()
{
main_loop->run();
}}
{
}
std::shared_ptr<mir::time::SteadyClock> clock;
std::shared_ptr<mir::MainLoop> main_loop;
mir::shell::TokenAuthority token_authority;
mir::test::AutoUnblockThread main_loop_thread;
};
You use "perfect forwarding" to move from main_loop and transfer ownership. (If you made members const the compiler would know you don't want this)
tarek-y-ismail
deleted the
pass-xdg-activation-token-when-launching-apps
branch
No description provided.