Add IPFSEnabled policy to control IPFS feature

[yrliou]

Resolves brave/brave-browser#11565

Submitter Checklist:

• Submitted a ticket for my issue if one did not already exist.
• Used Github auto-closing keywords in the commit message.
• Added/updated tests for this change (for new code or code which already has tests).
• Verified that these changes build without errors on
  • Android
  • iOS
  • Linux
  • macOS
  • Windows
• Verified that these changes pass automated tests (unit, browser, security tests) on
  • iOS
  • Linux
  • macOS
  • Windows
• Verified that all lint errors/warnings are resolved (npm run lint, npm run gn_check)
• Ran git rebase master (if needed).
• Ran git rebase -i to squash commits (if needed).
• Tagged reviewers and labelled the pull request as needed.
• Requested a security/privacy review as needed.
• Added appropriate QA labels (QA/Yes or QA/No) to the associated issue
• Added appropriate release note labels (release-notes/include or release-notes/exclude) to the associated issue
• Public documentation has been updated as necessary. For instance:
  • https://github.com/brave/brave-browser/wiki/Deviations-from-Chromium-(features-we-disable-or-remove)
  • https://github.com/brave/brave-browser/wiki/Proxy-redirected-URLs
  • https://github.com/brave/brave-browser/wiki/Fingerprinting-Protections
  • https://github.com/brave/brave-browser/wiki/Brave%E2%80%99s-Use-of-Referral-Codes
  • https://github.com/brave/brave-browser/wiki/Custom-Headers
  • https://github.com/brave/brave-browser/wiki/Web-compatibility-issues-with-tracking-protection
  • https://github.com/brave/brave-browser/wiki/QA-Guide

Test Plan:

On Linux or Windows:

1. Open brave browser and enable IPFS feature flag via brave://flags.

2. Go to brave://settings and search IPFS, should see Method to resolve IPFS locations and IPFS public gateway fallback settings available, change Method to resolve IPFS locations to Ask if not.

3. Visit https://dweb.link/ipfs/QmbWqxBEKC3P8tqsKc98xmWNzrzDtRLMiMPL8wBuTGsMnR, ipfs infobar should be shown to ask for enabling IPFS local node support.

4. Accept the infobar.

5. Visit brave://ipfs, page should be shown and daemon should be launched.

6. Quit the browser

7. In bash, go to profile folder, for example, ~/.config/BraveSoftware/Brave-Browser-Development on local linux build, /C/Users/yrliou/AppData/Local/BraveSoftware/Brave-Browser-Development/User Data on local windows build.
   Run find . -name *go-ipfs* should have results, for example, ./oecghfpdmkjlhnfpmmjegjacfimiafjp/1.0.2/go-ipfs_v0.6.0_linux-amd64 on linux, ./lnbclahgobmjphilkalbhebakmblnbij/1.0.2/go-ipfs_v0.6.0_windows-amd64 on windows.

8. [Linux]
   (sudo is needed in this step) Go to /etc/brave/policies/managed (create folders if not exists already), create test_policy.json with content:

{
  "IPFSEnabled": false
}

8. [Windows]
   Open regedit, for 64 bit, create the following keys:
   BraveSoftware\Brave under the existing key HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Policies
   (for 32 bit, you can edit HKEY_LOCAL_MACHINE\SOFTWARE\Policies)
   Create a DWORD value at this path called IPFSEnabled and set the value as 0

9. Open brave again

10. Go to brave://policy, should see:

11. Go to brave://settings and search IPFS, Method to resolve IPFS locations and IPFS public gateway fallback settings should not be available

12. Go to brave://ipfs, should show an error page saying This site can’t be reached.

13. Visit https://dweb.link/ipfs/QmbWqxBEKC3P8tqsKc98xmWNzrzDtRLMiMPL8wBuTGsMnR, no infobar is shown.

14. Do step 7 again, this time it should be an empty result. (no daemon binary can be found now)

Reviewer Checklist:

• New files have MPL-2.0 license header.
• Request a security/privacy review as needed.
• Adequate test coverage exists to prevent regressions
• Verify test plan is specified in PR before merging to source

After-merge Checklist:

• The associated issue milestone is set to the smallest version that the
  changes has landed on.
• All relevant documentation has been updated.

[yrliou]

condition checks are done in those static functions in content_browser_client_helper.cc now, remove the condition checks in this file.

[yrliou]

I didn't expose a new settings switch cuz there will be too much settings and could cause confusion.
Users are still able to set the resolve method (per-profile setting) as disabled in the settings which will be respected immediately without restarting the browser as before.
This new kIPFSEnabled pref is only for admins to add a mandatory policy to disable the whole IPFS feature for the machine and will remove the binary if already downloaded.

[yrliou]

This command-line switch is removed because we already have a feature flag to control IPFS.

[yrliou]

FYI The only chromium_src change is this file.

[simonhong]

LGTM 👍

[yrliou]

CI only had known rewards failures.
mac: RewardsContributionBrowserTest.PanelMonthlyTipAmount
windows: RewardsContributionBrowserTest.RecurringTipForUnverifiedPublisher

[bbondy]

lgtm!

[mkarolin]

chromium_src changes LGTM

[simonhong]

@yrliou How about filing an issue for group policy directory path?
I think /etc/chromium/policies/managed should be /etc/brave/policies/managed.

[yrliou]

The latest windows CI build is aborted due to node is removed.
My last rebase is just resolving a trivial merge conflict, merging as windows is already passed before it.