fix: grant camera permission based on origin

android/src/main/java/com/reactnativecommunity/webview/RNCWebViewManager.java

@@ -226,14 +226,14 @@ private String getLackPermissionToDownloadMessage() {
     return  mDownloadingMessage == null ? DEFAULT_LACK_PERMISSION_TO_DOWNLOAD_MESSAGE : mLackPermissionToDownloadMessage;
   }
 
-  @ReactProp(name = "cameraPermissionWhitelist")
-  public void setCameraPermissionWhitelist(RNCWebView webView, ReadableArray whitelist) {
+  @ReactProp(name = "cameraPermissionOriginWhitelist")
+  public void setCameraPermissionOriginWhitelist(RNCWebView webView, ReadableArray whitelist) {
     Set<String> whitelistSet = new HashSet<>();
     for (int i = 0; i < whitelist.size(); i++) {
       whitelistSet.add(whitelist.getString(i));
     }
 
-    mWebChromeClient.setCameraPermissionWhitelist(whitelistSet);
+    mWebChromeClient.setCameraPermissionOriginWhitelist(whitelistSet);
   }
 
   @ReactProp(name = "javaScriptEnabled")
@@ -1002,15 +1002,15 @@ protected static class RNCWebChromeClient extends WebChromeClient implements Lif
 
     // True if protected media should be allowed, false otherwise
     protected boolean mAllowsProtectedMedia = false;
-    private Set<String> cameraPermissionWhitelist = new HashSet<>();
+    private Set<String> cameraPermissionOriginWhitelist = new HashSet<>();
 
     public RNCWebChromeClient(ReactContext reactContext, WebView webView) {
       this.mReactContext = reactContext;
       this.mWebView = webView;
     }
 
-    public void setCameraPermissionWhitelist(Set<String> whitelist) {
-      this.cameraPermissionWhitelist = whitelist;
+    public void setCameraPermissionOriginWhitelist(Set<String> whitelist) {
+      this.cameraPermissionOriginWhitelist = whitelist;
     }
 
     @Override
@@ -1074,21 +1074,19 @@ public void onPermissionRequest(final PermissionRequest request) {
       grantedPermissions = new ArrayList<>();
 
       ArrayList<String> requestedAndroidPermissions = new ArrayList<>();
-      String originUrl = request.getOrigin().toString();
-      String originHost;
-
-      try {
-        URL url = new URL(originUrl);
-        originHost = url.getHost();
-      } catch (MalformedURLException e) {
-        request.deny();
-        return;
+      final Uri originUri = request.getOrigin();
+      final String scheme = originUri.getScheme();
+      final int port = originUri.getPort();
+      String origin = scheme + "://" + port;
+
+      if (port > 0 && ((scheme == "http" && port != 80) || (scheme == "https" && port != 443))) {
+        origin += ":" + port;
       }
 
       for (String requestedResource : request.getResources()) {
         String androidPermission = null;
 
-        if (this.cameraPermissionWhitelist.contains(originHost)) {
+        if (this.cameraPermissionOriginWhitelist.contains(origin)) {
           if (requestedResource.equals(PermissionRequest.RESOURCE_VIDEO_CAPTURE)) {
             androidPermission = Manifest.permission.CAMERA;
           } else if (requestedResource.equals(PermissionRequest.RESOURCE_AUDIO_CAPTURE)) {

apple/RNCWebView.m

@@ -22,7 +22,7 @@
 static NSString *const MessageHandlerName = @"ReactNativeWebView";
 static NSURLCredential* clientAuthenticationCredential;
 static NSDictionary* customCertificatesForHost;
-static NSSet *cameraPermissionWhitelist;
+static NSSet *cameraPermissionOriginWhitelist;
 
 NSString *const CUSTOM_SELECTOR = @"_CUSTOM_SELECTOR_";
 
@@ -71,7 +71,7 @@ @interface RNCWebView () <WKUIDelegate, WKNavigationDelegate, WKScriptMessageHan
 @property (nonatomic, strong) WKUserScript *postMessageScript;
 @property (nonatomic, strong) WKUserScript *atStartScript;
 @property (nonatomic, strong) WKUserScript *atEndScript;
-@property (nonatomic, strong) NSArray<NSString *> *cameraPermissionWhitelist;
+@property (nonatomic, strong) NSArray<NSString *> *cameraPermissionOriginWhitelist;
 @end
 
 @implementation RNCWebView
@@ -1056,24 +1056,16 @@ - (void)                         webView:(WKWebView *)webView
                         initiatedByFrame:(WKFrameInfo *)frame
                                     type:(WKMediaCaptureType)type
                          decisionHandler:(void (^)(WKPermissionDecision decision))decisionHandler {
-  if (![self.cameraPermissionWhitelist containsObject:origin.host]) {
-    decisionHandler(WKPermissionDecisionDeny);
-    return;
+  NSString *originString = [NSString stringWithFormat:@"%@://%@", origin.protocol, origin.host];
+
+  if (origin.port > 0 && (([origin.protocol isEqualToString:@"http"] && origin.port != 80) || ([origin.protocol isEqualToString:@"https"] && origin.port != 443))) {
+    originString = [originString stringByAppendingFormat:@":%ld", (long)origin.port];
   }
 
-  if (_mediaCapturePermissionGrantType == RNCWebViewPermissionGrantType_GrantIfSameHost_ElsePrompt || _mediaCapturePermissionGrantType == RNCWebViewPermissionGrantType_GrantIfSameHost_ElseDeny) {
-    if ([origin.host isEqualToString:webView.URL.host]) {
-      decisionHandler(WKPermissionDecisionGrant);
-    } else {
-      WKPermissionDecision decision = _mediaCapturePermissionGrantType == RNCWebViewPermissionGrantType_GrantIfSameHost_ElsePrompt ? WKPermissionDecisionPrompt : WKPermissionDecisionDeny;
-      decisionHandler(decision);
-    }
-  } else if (_mediaCapturePermissionGrantType == RNCWebViewPermissionGrantType_Deny) {
-    decisionHandler(WKPermissionDecisionDeny);
-  } else if (_mediaCapturePermissionGrantType == RNCWebViewPermissionGrantType_Grant) {
+  if ([self.cameraPermissionOriginWhitelist containsObject:originString]) {
     decisionHandler(WKPermissionDecisionGrant);
   } else {
-    decisionHandler(WKPermissionDecisionPrompt);
+    decisionHandler(WKPermissionDecisionDeny);
   }
 }
 #endif

apple/RNCWebViewManager.m

@@ -78,7 +78,7 @@ - (RCTUIView *)view
 RCT_EXPORT_VIEW_PROPERTY(cacheEnabled, BOOL)
 RCT_EXPORT_VIEW_PROPERTY(allowsLinkPreview, BOOL)
 RCT_EXPORT_VIEW_PROPERTY(basicAuthCredential, NSDictionary)
-RCT_EXPORT_VIEW_PROPERTY(cameraPermissionWhitelist, NSArray)
+RCT_EXPORT_VIEW_PROPERTY(cameraPermissionOriginWhitelist, NSArray)
 
 #if defined(__IPHONE_OS_VERSION_MAX_ALLOWED) && __IPHONE_OS_VERSION_MAX_ALLOWED >= 110000 /* __IPHONE_11_0 */
 RCT_EXPORT_VIEW_PROPERTY(contentInsetAdjustmentBehavior, UIScrollViewContentInsetAdjustmentBehavior)

src/WebView.android.tsx

@@ -20,7 +20,6 @@ import {
   defaultRenderLoading,
   useWebWiewLogic,
   versionPasses,
-  removeHttpsFromOrigins,
 } from './WebViewShared';
 import {
   AndroidWebViewProps,
@@ -68,7 +67,6 @@ const WebViewComponent = forwardRef<{}, AndroidWebViewProps>((props, ref) => {
     scalesPageToFit = true,
     saveFormDataDisabled = false,
     cacheEnabled = true,
-    cameraPermissionWhitelist = [],
     androidHardwareAccelerationDisabled = false,
     androidLayerType = "none",
     originWhitelist = defaultOriginWhitelist,
@@ -209,7 +207,6 @@ const WebViewComponent = forwardRef<{}, AndroidWebViewProps>((props, ref) => {
   const webView = <NativeWebView
     key="webViewKey"
     {...otherProps}
-    cameraPermissionWhitelist={removeHttpsFromOrigins(cameraPermissionWhitelist)}
     messagingEnabled={typeof onMessageProp === 'function'}
     messagingModuleName={messagingModuleName}
 

src/WebView.ios.tsx

@@ -17,7 +17,6 @@ import {
   defaultRenderLoading,
   useWebWiewLogic,
   versionPasses,
-  removeHttpsFromOrigins,
 } from './WebViewShared';
 import {
   IOSWebViewProps,
@@ -73,7 +72,6 @@ const WebViewComponent = forwardRef<{}, IOSWebViewProps>((props, ref) => {
   const {
     javaScriptEnabled = true,
     cacheEnabled = true,
-    cameraPermissionWhitelist = [],
     originWhitelist = defaultOriginWhitelist,
     deeplinkWhitelist = defaultDeeplinkWhitelist,
     textInteractionEnabled= true,
@@ -192,7 +190,6 @@ const WebViewComponent = forwardRef<{}, IOSWebViewProps>((props, ref) => {
       enableApplePay={enableApplePay}
       javaScriptEnabled={javaScriptEnabled}
       cacheEnabled={cacheEnabled}
-      cameraPermissionWhitelist={removeHttpsFromOrigins(cameraPermissionWhitelist)}
       dataDetectorTypes={dataDetectorTypes}
       useSharedProcessPool={useSharedProcessPool}
       textInteractionEnabled={textInteractionEnabled}

src/WebViewShared.tsx

@@ -316,7 +316,3 @@ export const versionPasses = (version: string | undefined, minimum: string | und
   }
   return true // equals
 }
-
-export const removeHttpsFromOrigins = (whitelist: string[]) => {
-  return whitelist.map((origin) => origin.replace('https://', ''))
-}

src/WebViewTypes.ts

@@ -229,7 +229,7 @@ export interface BasicAuthCredential {
 
 export interface CommonNativeWebViewProps extends ViewProps {
   cacheEnabled?: boolean;
-  cameraPermissionWhitelist?: string[];
+  cameraPermissionOriginWhitelist?: string[];
   incognito?: boolean;
   injectedJavaScript?: string;
   injectedJavaScriptBeforeContentLoaded?: string;
@@ -793,7 +793,7 @@ export interface WebViewSharedProps extends ViewProps {
    * Defines a list of domain origins that can access camera.
    */
 
-  readonly cameraPermissionWhitelist?: string[];
+  readonly cameraPermissionOriginWhitelist?: string[];
 
   /**
    * Stylesheet object to set the style of the container view.