electron introduction

Transcript

1. 1.

   Electron Introduction @yosuke_furukawa

2. 2.

   Twitter: @yosuke_furukawa Github: yosuke-furukawa

3. 3.

   Recent works in my previous company • front-end / server-side

   engineer • creating apps using Electron • creating widget library using React • creating server APIs
4. 4.

   ࠷ۙ

5. 5.

   None
6. 6.

   ࡱӨ͞Εͨসإ

7. 7.

   ׬શʹҰக

8. 8.

   Electron

9. 9.

   What is Electron?? • ΫϩεϓϥοτϑΥʔϜσεΫτοϓΞϓϦ έʔγϣϯϑϨʔϜϫʔΫ
 Windows, Linux, Mac OSX

   • GitHub ࣾ੡ʢ΋ͱ΋ͱ͸ Atom ΤσΟλͷͨ Ίʹ࡞ΒΕͨ΋ͷʣ
10. 10.

    What is Electron?? • ࡞ऀ͸ @zcbenz ࢯ • ࣅͨΑ͏ͳϓϩδΣΫτͱͯ͠NW.js͕͋Δ ͕ɺNW.js͸Electron։ൃ౰࣌ෆ҆ఆͰ͋Γɺ

    ࠜຊͷίϯηϓτͷͱ͜ΖͰҧ͍Λײͨͨ͡ Ίɺશ͘ผͳϓϩμΫτʹͳͬͨɻ
11. 11.

    What is Electron?? • Electronͷத਎͸ • • Chromium • Browser

    ͷϨϯμϦϯάϓϩηε͸Chromium͕୲ ౰ɺதͰϨϯμϦϯάϓϩηεΛ࡞Δॴ΍ϑΝΠϧΛ ։͘ॴɺXHR/fetchҎ֎ͰͷΞΫηε͸Node.js͕୲౰
12. 12.

    What is Electron?? • V8 ͕ Node / Chromium Ͱڞ༗͞ΕͯΔ

    • Node/Chromium Ͱ(΄΅)͓ͳ͡ίʔυ͕ಈ͘
13. 13.

    Electron ͷத਎

14. 14.

    $ISPNJVN .BJO
    1SPDFTT 3FOEFSFS
    1SPDFTT IPC ௨৴ fork

15. 15.

    $ISPNJVN .BJO
    1SPDFTT 3FOEFSFS
    1SPDFTT IPC ௨৴ fork ϒϥ΢βͷ ϨΠϠ ϒϥ΢βΛૢ࡞͢ Δϓϩηε

    JSͰૢ࡞Մೳ ϝΠϯϓϩηε
16. 16.

    Main Process • ϓϩάϥϜͷΤϯτϦϙΠϯτ • Node.js ͕୲౰ • Renderer Process

    ͱ௨৴ͯ͠ॲཧΛߦͬͨ Γɺͦ΋ͦ΋Renderer Process Λىಈͤͨ͞ Γ͢Δॴɻ
17. 17.

    Renderer Process • Main process ͕ࢦఆͨ͠URLʹ͋ΔϦιʔεΛϩʔ υͯ͠ىಈ͢Δϓϩηε • htmlΛදࣔ͢ΔɺcssͰϨΠΞ΢τ૊ΉɺJSͰdomΛ ૢ࡞͢ΔͳͲ΄΅ϒϥ΢βͷ࢓ࣄ

    • །Ұϒϥ΢βͱҧ͏ͷ͸Renderer Process ͔Β Main ͱ௨৴ͯ͠ɺ Node.js ͷॲཧΛಁաతʹݺ΂Δॴ
18. 18.

    ͕͍ͧ͜͜͢͝ Electron

19. 19.

    Node.js ͷϥΠϒϥϦΛ௚઀ಁ աతʹݺ΂Δɻ <script> // ࣗ෼ͷϩʔΧϧϑΝΠϧಡΈ͜ΜͩΓ const fs = require(‘fs’);

    fs.readFile(‘foo/bar/baz’, (err, data) => { console.log(data); }); </script> <script> // ֎෦ϓϩηεΛݺΜͩΓ const cp = require(‘child_process’); cp.exec(‘ls -l’, (err, stdout) => { console.log(stdout); }); </script>
20. 20.

    Cross Platform • Windows Ͱ΋ OSX Ͱ΋ಈ͘!!! • Node.js ++

21. 21.

    npm Λج൫ͱ͢ΔಠࣗΤίγ εςϜ͕Ͱ͖ͯΔ

22. 22.

    693 packages

23. 23.

    Electron Λ ࠾༻͍ͯ͠Δπʔϧ

24. 24.

    None
25. 25.

    OSX ͬΆ͍ݟͨ໨ʹ͍ͨ͠

26. 26.

    PhotonKit

27. 27.

    PhotonKit CSS class set ͕طʹ͋Δ

28. 28.

    Chrome ͬΆ͍ tab Λ࡞Γ͍ͨ

29. 29.

    chrome-tabs Chrome tab ͬΆ͍ͷ͕ಈ͘

30. 30.

    ࣄྫ͕๛෋ awesome-electron Λࢀর

31. 31.

    ࣄྫ͕๛෋ ScreenCat ͰσεΫτοϓεΫϦʔϯڞ༗

32. 32.

    ࣄྫ͕๛෋ minira => jira ͷ notification πʔϧ

33. 33.

    ࣄྫ͕๛෋ Chat application FRIENDS ౳

34. 34.

    ࣄྫ͕๛෋ Mojibar => emoji searcher

35. 35.

    Electron APIs

36. 36.

    Electron APIs • Main Process (node.jsଆ) • app 
 ΞϓϦέʔγϣϯͷىಈ΍ऴྃͳͲͷLifeCycle؅ཧ༻

    API • autoUpdater 
 ࣗಈߋ৽ݕ஌ɾμ΢ϯϩʔυɾΞοϓσʔτػೳ • powerMonitor 
 όοςϦʔ͕੾Εͯsuspendʹͳͬͨ/ACΞμϓλʔ͕੾Εͨ౳ͷݕ஌ • Menu/MenuItem
 ͍ΘΏΔ͜Ε→
 γϣʔτΧοτΩʔͰϝχϡʔݺͼग़͠ͳͲ΋ରԠ
37. 37.

    Electron APIs • Render Process (chromiumଆ) • desktopCapturer 
 σεΫτοϓΩϟϓνϟʔΛऔΕΔΑ͏ʹ͢Δɺڧ͍API

    • webframe 
 zoom, input text field ʹରͯ͠spell checkerΛ͢Δ͔Ͳ͏͔౳ • Both Process (྆ํͰ࢖͑ΔAPI) • clipboard 
 ΫϦοϓϘʔυͷதͷίϐʔͨ͠΋ͷΛऔΕΔΑ͏ʹ͢Δ • shell
 desktopͷػೳͱͷڞଘ shell.openExternal Ͱ֦ுࢠʹඥ෇͍ͨػೳΛ࣮ߦ͢Δ(ॴҦ open ίϚϯυͱಉ༷)
38. 38.

    ͕͜͜΍͹͍ͧ Electron

39. 39.

    Node.js ͷϥΠϒϥϦΛ௚઀ಁաతʹݺ΂ΔͨΊɺ ͳΜ͔ؒҧͬͯ XSS ͕ى͖Δͱ೚ҙίʔυ࣮ߦͰ͖ Δ <html> <script> // ࣗ෼ͷϩʔΧϧϑΝΠϧΛফͨ͠Γ

    const fs = require(‘fs’); fs.unlinkSync('/'); // ࣗ෼ͷϩʔΧϧϑΝΠϧΛফͨ͠Γ const cp = require('child_process'); cp.execSync('rm -rf /'); </script> </html>
40. 40.

    Electron ͷ౗͠ํ
 (by hasegawayosuke) http://utf-8.jp/public/2016/0307/electron.pdf

41. 41.

    Electron ͷ౗͠ํ
 (by hasegawayosuke) http://utf-8.jp/public/2016/0307/electron.pdf Booooooo

42. 42.

    ಛʹ DOM based XSS ͕͋Δ ͱ NG

43. 43.

    DEMO

44. 44.

    ʘ(^o^)ʗ

45. 45.

    ٹ͍͸͋Δ

46. 46.

    Security Updates

47. 47.

    جຊతʹ nodeIntegration Λ ࢖Θͳ͚Ε͹೚ҙͷίʔυͷ ࣮ߦ·Ͱ͸Ͱ͖ͳ͍ʂʂʂʂ

48. 48.

    nodeIntegration Λ false ʹͨ͠··࡞ Γɺ IPC ௨৴Ͱ node ͱ΍ΓऔΓ͢Δ app.on('ready',

    function() { mainWindow = new BrowserWindow({ width: 800, height: 600, webPreferences: { nodeIntegration: false // false ʹ͢Δ } }); mainWindow.loadURL('file://' + __dirname + '/index.html'); mainWindow.on('closed', function() { mainWindow = null; }); });
49. 49.

    Node.js ͷϥΠϒϥϦΛ௚઀ಁ աతʹݺ΂Δɻ <script> // ࣗ෼ͷϩʔΧϧϑΝΠϧಡΈ͜ΜͩΓ const fs = require(‘fs’);

    fs.readFile(‘foo/bar/baz’, (err, data) => { console.log(data); }); </script> <script> // ֎෦ϓϩηεΛݺΜͩΓ const cp = require(‘child_process’); cp.exec(‘ls -l’, (err, stdout) => { console.log(stdout); }); </script>
50. 50.

    Node.js ͷϥΠϒϥϦΛ௚઀ಁ աతʹݺ΂Δɻ <script> // ࣗ෼ͷϩʔΧϧϑΝΠϧಡΈ͜ΜͩΓ const fs = require(‘fs’);

    fs.readFile(‘foo/bar/baz’, (err, data) => { console.log(data); }); </script> <script> // ֎෦ϓϩηεΛݺΜͩΓ const cp = require(‘child_process’); cp.exec(‘ls -l’, (err, stdout) => { console.log(stdout); }); </script> ఘΊΖʂʂʂʂʂʂ
51. 51.

    Defensive ʹ࡞ΔͳΒ nodeIntegration Λ false ʹ ͭͭ͠ɺ ipc Ͱ Node.js

    ͱ΍ ΓऔΓ
52. 52.

    ࢀߟʹ͢Δ΂͖ࢿྉ

53. 53.

    Electron ࢀߟ • Qiita Ͱ Advent Calendar ࣮ࢪத • http://qiita.com/advent-calendar/2015/electron

    • awesome electron • https://github.com/sindresorhus/awesome-electron • electron slack • https://electron-jp-slackin.herokuapp.com/ • ೔ຊޠνϡʔτϦΞϧ຋༁ • https://github.com/sotayamashita/electron/tree/japanese-localization/docs- translations/jp
54. 54.

    ޙ΋͏Ұͭ

55. 55.

    electron ͷҭͯํ • electronica 
 electron tutorial Λ࡞࣮ͬͯߦͯ͠ΈΔͱ͍͍ ͔΋

56. 56.

    electronica install $ (sudo) npm install electronica -g # ͜ΕͰΠϯετʔϧ

    $ electronica # ͜ΕͰىಈʂ
57. 57.

    electron ͷҭͯํ • electronica 
 electronica ͕ऴΘΕ͹؆қϒϥ΢βΛ࡞ͬͯ ༡΂Δɻ

58. 58.

    DEMO

59. 59.

    Electron ΛҰॹʹҭ͍͖ͯͯ ·͠ΐ͏ɻ

60. 60.

    ·ͱΊ

61. 61.

    ·ͱΊ • electron ೔ਐ݄าͰਐԽͯ͠Δ • ΤίγεςϜ΋େ͖͘ͳ͍ͬͯΔ • ͦΕʹͱ΋ͳͬͯؾΛ͚ͭͳ͍ͱ͍͚ͳ͍఺΋ଟ͍ • ಛʹηΩϡϦςΟ

    • ҰॹʹΈΜͳͰ৴߸Λ౉Γ͍ͨʂ
62. 62.

    ͋Γ͕ͱ͏͍͟͝·ͨ͠