Google Git
Sign in
chromium / chromium / src / 31c2f3b540cae63fb9ebe9a58929eeefaf04dc6c / . / chrome / browser / password_manager / password_manager_test_base.cc
blob: 6457f8a0daed371e040d8f585e2f8b1b76bff615 [file] [log] [blame]
// Copyright 2015 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/password_manager/password_manager_test_base.h"
#include <map>
#include <string>
#include <utility>
#include <vector>
#include "base/macros.h"
#include "base/memory/ptr_util.h"
#include "base/memory/ref_counted.h"
#include "base/optional.h"
#include "base/strings/stringprintf.h"
#include "base/strings/utf_string_conversions.h"
#include "chrome/browser/password_manager/chrome_password_manager_client.h"
#include "chrome/browser/password_manager/password_store_factory.h"
#include "chrome/browser/profiles/profile.h"
#include "chrome/browser/profiles/profile_io_data.h"
#include "chrome/browser/ui/autofill/chrome_autofill_client.h"
#include "chrome/browser/ui/browser.h"
#include "chrome/browser/ui/passwords/manage_passwords_ui_controller.h"
#include "chrome/browser/ui/tabs/tab_strip_model.h"
#include "chrome/test/base/ui_test_utils.h"
#include "components/autofill/core/browser/autofill_test_utils.h"
#include "components/password_manager/core/browser/password_manager_test_utils.h"
#include "components/password_manager/core/browser/test_password_store.h"
#include "content/public/browser/browser_thread.h"
#include "content/public/browser/navigation_details.h"
#include "content/public/browser/navigation_handle.h"
#include "content/public/browser/render_frame_host.h"
#include "content/public/browser/storage_partition.h"
#include "content/public/test/browser_test_utils.h"
#include "net/cert/cert_verify_result.h"
#include "net/dns/mock_host_resolver.h"
#include "net/http/transport_security_state.h"
#include "net/test/embedded_test_server/embedded_test_server.h"
#include "net/url_request/url_request_context.h"
#include "net/url_request/url_request_context_getter.h"
namespace {
// A helper class that synchronously waits until the password store handles a
// GetLogins() request.
class PasswordStoreResultsObserver
: public password_manager::PasswordStoreConsumer {
public:
PasswordStoreResultsObserver() = default;
void OnGetPasswordStoreResults(
std::vector<std::unique_ptr<autofill::PasswordForm>> results) override {
run_loop_.Quit();
}
void Wait() { run_loop_.Run(); }
private:
base::RunLoop run_loop_;
DISALLOW_COPY_AND_ASSIGN(PasswordStoreResultsObserver);
};
// ManagePasswordsUIController subclass to capture the UI events.
class CustomManagePasswordsUIController : public ManagePasswordsUIController {
public:
explicit CustomManagePasswordsUIController(
content::WebContents* web_contents);
void WaitForState(password_manager::ui::State target_state);
void WaitForFallbackForSaving();
bool was_prompt_automatically_shown() {
return was_prompt_automatically_shown_;
}
private:
// PasswordsClientUIDelegate:
void OnPasswordSubmitted(
std::unique_ptr<password_manager::PasswordFormManagerForUI> form_manager)
override;
void OnUpdatePasswordSubmitted(
std::unique_ptr<password_manager::PasswordFormManagerForUI> form_manager)
override;
void OnShowManualFallbackForSaving(
std::unique_ptr<password_manager::PasswordFormManagerForUI> form_manager,
bool has_generated_password,
bool is_update) override;
void OnHideManualFallbackForSaving() override;
bool OnChooseCredentials(
std::vector<std::unique_ptr<autofill::PasswordForm>> local_credentials,
const GURL& origin,
const ManagePasswordsState::CredentialsCallback& callback) override;
void OnPasswordAutofilled(
const std::map<base::string16, const autofill::PasswordForm*>&
password_form_map,
const GURL& origin,
const std::vector<const autofill::PasswordForm*>* federated_matches)
override;
void DidFinishNavigation(
content::NavigationHandle* navigation_handle) override;
// Should not be used for manual fallback events.
bool IsTargetStateObserved(
const password_manager::ui::State target_state,
const password_manager::ui::State current_state) const;
void ProcessStateExpectations(
const password_manager::ui::State current_state);
// Quits |run_loop_| and clears expectations.
void QuitRunLoop();
// The loop to be stopped when the target state or fallback is observed.
base::RunLoop* run_loop_;
// The state CustomManagePasswordsUIController is currently waiting for.
base::Optional<password_manager::ui::State> target_state_;
// True iff showing fallback is waited.
bool wait_for_fallback_;
// True iff a prompt was automatically shown.
bool was_prompt_automatically_shown_;
DISALLOW_COPY_AND_ASSIGN(CustomManagePasswordsUIController);
};
CustomManagePasswordsUIController::CustomManagePasswordsUIController(
content::WebContents* web_contents)
: ManagePasswordsUIController(web_contents),
run_loop_(nullptr),
wait_for_fallback_(false),
was_prompt_automatically_shown_(false) {
// Attach CustomManagePasswordsUIController to |web_contents| so the default
// ManagePasswordsUIController isn't created.
// Do not silently replace an existing ManagePasswordsUIController because it
// unregisters itself in WebContentsDestroyed().
EXPECT_FALSE(web_contents->GetUserData(UserDataKey()));
web_contents->SetUserData(UserDataKey(), base::WrapUnique(this));
}
void CustomManagePasswordsUIController::WaitForState(
password_manager::ui::State target_state) {
if (IsTargetStateObserved(target_state, GetState()))
return;
base::RunLoop run_loop;
target_state_ = target_state;
run_loop_ = &run_loop;
run_loop_->Run();
}
void CustomManagePasswordsUIController::WaitForFallbackForSaving() {
if (!was_prompt_automatically_shown_ &&
GetState() == password_manager::ui::PENDING_PASSWORD_STATE)
return;
base::RunLoop run_loop;
wait_for_fallback_ = true;
run_loop_ = &run_loop;
run_loop_->Run();
}
void CustomManagePasswordsUIController::OnPasswordSubmitted(
std::unique_ptr<password_manager::PasswordFormManagerForUI> form_manager) {
ManagePasswordsUIController::OnPasswordSubmitted(std::move(form_manager));
was_prompt_automatically_shown_ = IsShowingBubbleForTest();
ProcessStateExpectations(password_manager::ui::PENDING_PASSWORD_STATE);
}
void CustomManagePasswordsUIController::OnUpdatePasswordSubmitted(
std::unique_ptr<password_manager::PasswordFormManagerForUI> form_manager) {
was_prompt_automatically_shown_ = true;
ProcessStateExpectations(password_manager::ui::PENDING_PASSWORD_UPDATE_STATE);
return ManagePasswordsUIController::OnUpdatePasswordSubmitted(
std::move(form_manager));
}
void CustomManagePasswordsUIController::OnShowManualFallbackForSaving(
std::unique_ptr<password_manager::PasswordFormManagerForUI> form_manager,
bool has_generated_password,
bool is_update) {
if (wait_for_fallback_)
QuitRunLoop();
ManagePasswordsUIController::OnShowManualFallbackForSaving(
std::move(form_manager), has_generated_password, is_update);
}
void CustomManagePasswordsUIController::OnHideManualFallbackForSaving() {
ManagePasswordsUIController::OnHideManualFallbackForSaving();
ProcessStateExpectations(GetState());
}
bool CustomManagePasswordsUIController::OnChooseCredentials(
std::vector<std::unique_ptr<autofill::PasswordForm>> local_credentials,
const GURL& origin,
const ManagePasswordsState::CredentialsCallback& callback) {
ProcessStateExpectations(password_manager::ui::CREDENTIAL_REQUEST_STATE);
return ManagePasswordsUIController::OnChooseCredentials(
std::move(local_credentials), origin, callback);
}
void CustomManagePasswordsUIController::OnPasswordAutofilled(
const std::map<base::string16, const autofill::PasswordForm*>&
password_form_map,
const GURL& origin,
const std::vector<const autofill::PasswordForm*>* federated_matches) {
ProcessStateExpectations(password_manager::ui::MANAGE_STATE);
return ManagePasswordsUIController::OnPasswordAutofilled(
password_form_map, origin, federated_matches);
}
void CustomManagePasswordsUIController::DidFinishNavigation(
content::NavigationHandle* navigation_handle) {
ManagePasswordsUIController::DidFinishNavigation(navigation_handle);
if (GetState() != password_manager::ui::PENDING_PASSWORD_STATE &&
GetState() != password_manager::ui::PENDING_PASSWORD_UPDATE_STATE) {
// Navigation cleared the state, an automatic prompt disappears.
was_prompt_automatically_shown_ = false;
}
ProcessStateExpectations(GetState());
}
bool CustomManagePasswordsUIController::IsTargetStateObserved(
const password_manager::ui::State target_state,
const password_manager::ui::State current_state) const {
// This function should not be used for manual fallback expectations.
DCHECK(!wait_for_fallback_);
bool should_wait_for_automatic_prompt =
target_state == password_manager::ui::PENDING_PASSWORD_STATE ||
target_state == password_manager::ui::PENDING_PASSWORD_UPDATE_STATE;
return target_state == current_state &&
(!should_wait_for_automatic_prompt || was_prompt_automatically_shown_);
}
void CustomManagePasswordsUIController::ProcessStateExpectations(
const password_manager::ui::State current_state) {
if (!target_state_)
return;
if (IsTargetStateObserved(*target_state_, current_state))
QuitRunLoop();
}
void CustomManagePasswordsUIController::QuitRunLoop() {
run_loop_->Quit();
run_loop_ = nullptr;
wait_for_fallback_ = false;
target_state_.reset();
}
enum ReturnCodes { // Possible results of the JavaScript code.
RETURN_CODE_OK,
RETURN_CODE_NO_ELEMENT,
RETURN_CODE_WRONG_VALUE,
RETURN_CODE_INVALID,
};
} // namespace
NavigationObserver::NavigationObserver(content::WebContents* web_contents)
: content::WebContentsObserver(web_contents),
quit_on_entry_committed_(false) {}
NavigationObserver::~NavigationObserver() {
}
void NavigationObserver::DidFinishNavigation(
content::NavigationHandle* navigation_handle) {
if (!navigation_handle->HasCommitted())
return;
if (quit_on_entry_committed_)
run_loop_.Quit();
}
void NavigationObserver::DidFinishLoad(
content::RenderFrameHost* render_frame_host,
const GURL& validated_url) {
render_frame_host_ = render_frame_host;
if (!wait_for_path_.empty()) {
if (validated_url.path() == wait_for_path_)
run_loop_.Quit();
} else if (!render_frame_host->GetParent()) {
run_loop_.Quit();
}
}
void NavigationObserver::Wait() {
run_loop_.Run();
}
BubbleObserver::BubbleObserver(content::WebContents* web_contents)
: passwords_ui_controller_(
ManagePasswordsUIController::FromWebContents(web_contents)) {}
bool BubbleObserver::IsSavePromptAvailable() const {
return passwords_ui_controller_->GetState() ==
password_manager::ui::PENDING_PASSWORD_STATE;
}
bool BubbleObserver::IsUpdatePromptAvailable() const {
return passwords_ui_controller_->GetState() ==
password_manager::ui::PENDING_PASSWORD_UPDATE_STATE;
}
bool BubbleObserver::IsSavePromptShownAutomatically() const {
if (!IsSavePromptAvailable())
return false;
return static_cast<CustomManagePasswordsUIController*>(
passwords_ui_controller_)
->was_prompt_automatically_shown();
}
bool BubbleObserver::IsUpdatePromptShownAutomatically() const {
if (!IsUpdatePromptAvailable())
return false;
return static_cast<CustomManagePasswordsUIController*>(
passwords_ui_controller_)
->was_prompt_automatically_shown();
}
void BubbleObserver::Dismiss() const {
passwords_ui_controller_->OnBubbleHidden();
ASSERT_EQ(password_manager::ui::INACTIVE_STATE,
passwords_ui_controller_->GetState());
}
void BubbleObserver::AcceptSavePrompt() const {
ASSERT_TRUE(IsSavePromptAvailable());
passwords_ui_controller_->SavePassword(
passwords_ui_controller_->GetPendingPassword().username_value,
passwords_ui_controller_->GetPendingPassword().password_value);
EXPECT_FALSE(IsSavePromptAvailable());
}
void BubbleObserver::AcceptUpdatePrompt(
const autofill::PasswordForm& form) const {
ASSERT_TRUE(IsUpdatePromptAvailable());
passwords_ui_controller_->SavePassword(
passwords_ui_controller_->GetPendingPassword().username_value,
passwords_ui_controller_->GetPendingPassword().password_value);
EXPECT_FALSE(IsUpdatePromptAvailable());
}
void BubbleObserver::WaitForAccountChooser() const {
CustomManagePasswordsUIController* controller =
static_cast<CustomManagePasswordsUIController*>(passwords_ui_controller_);
controller->WaitForState(password_manager::ui::CREDENTIAL_REQUEST_STATE);
}
void BubbleObserver::WaitForInactiveState() const {
CustomManagePasswordsUIController* controller =
static_cast<CustomManagePasswordsUIController*>(passwords_ui_controller_);
controller->WaitForState(password_manager::ui::INACTIVE_STATE);
}
void BubbleObserver::WaitForManagementState() const {
CustomManagePasswordsUIController* controller =
static_cast<CustomManagePasswordsUIController*>(passwords_ui_controller_);
controller->WaitForState(password_manager::ui::MANAGE_STATE);
}
void BubbleObserver::WaitForAutomaticSavePrompt() const {
CustomManagePasswordsUIController* controller =
static_cast<CustomManagePasswordsUIController*>(passwords_ui_controller_);
controller->WaitForState(password_manager::ui::PENDING_PASSWORD_STATE);
}
void BubbleObserver::WaitForFallbackForSaving() const {
CustomManagePasswordsUIController* controller =
static_cast<CustomManagePasswordsUIController*>(passwords_ui_controller_);
controller->WaitForFallbackForSaving();
}
PasswordManagerBrowserTestBase::PasswordManagerBrowserTestBase()
: https_test_server_(net::EmbeddedTestServer::TYPE_HTTPS),
web_contents_(nullptr) {}
PasswordManagerBrowserTestBase::~PasswordManagerBrowserTestBase() = default;
void PasswordManagerBrowserTestBase::SetUpOnMainThread() {
// Use TestPasswordStore to remove a possible race. Normally the
// PasswordStore does its database manipulation on the DB thread, which
// creates a possible race during navigation. Specifically the
// PasswordManager will ignore any forms in a page if the load from the
// PasswordStore has not completed.
PasswordStoreFactory::GetInstance()->SetTestingFactory(
browser()->profile(),
password_manager::BuildPasswordStore<
content::BrowserContext, password_manager::TestPasswordStore>);
ASSERT_TRUE(embedded_test_server()->Start());
// Setup HTTPS server serving files from standard test directory.
static constexpr base::FilePath::CharType kDocRoot[] =
FILE_PATH_LITERAL("chrome/test/data");
https_test_server().ServeFilesFromSourceDirectory(base::FilePath(kDocRoot));
ASSERT_TRUE(https_test_server().Start());
// Setup the mock host resolver
host_resolver()->AddRule("*", "127.0.0.1");
// Whitelist all certs for the HTTPS server.
auto cert = https_test_server().GetCertificate();
net::CertVerifyResult verify_result;
verify_result.cert_status = 0;
verify_result.is_issued_by_known_root = true;
verify_result.verified_cert = cert;
mock_cert_verifier()->AddResultForCert(cert.get(), verify_result, net::OK);
// Add a tab with a customized ManagePasswordsUIController. Thus, we can
// intercept useful UI events.
content::WebContents* tab =
browser()->tab_strip_model()->GetActiveWebContents();
std::unique_ptr<content::WebContents> owned_web_contents =
content::WebContents::Create(
content::WebContents::CreateParams(tab->GetBrowserContext()));
web_contents_ = owned_web_contents.get();
ASSERT_TRUE(web_contents_);
// ManagePasswordsUIController needs ChromePasswordManagerClient for logging.
autofill::ChromeAutofillClient::CreateForWebContents(web_contents_);
ChromePasswordManagerClient::CreateForWebContentsWithAutofillClient(
web_contents_,
autofill::ChromeAutofillClient::FromWebContents(web_contents_));
ASSERT_TRUE(ChromePasswordManagerClient::FromWebContents(web_contents_));
CustomManagePasswordsUIController* controller =
new CustomManagePasswordsUIController(web_contents_);
browser()->tab_strip_model()->AppendWebContents(std::move(owned_web_contents),
true);
browser()->tab_strip_model()->CloseWebContentsAt(0,
TabStripModel::CLOSE_NONE);
ASSERT_EQ(controller,
ManagePasswordsUIController::FromWebContents(web_contents_));
ASSERT_EQ(web_contents_,
browser()->tab_strip_model()->GetActiveWebContents());
ASSERT_FALSE(web_contents_->IsLoading());
}
void PasswordManagerBrowserTestBase::TearDownOnMainThread() {
ASSERT_TRUE(embedded_test_server()->ShutdownAndWaitUntilComplete());
}
void PasswordManagerBrowserTestBase::TearDownInProcessBrowserTestFixture() {
ProfileIOData::SetCertVerifierForTesting(nullptr);
}
content::WebContents* PasswordManagerBrowserTestBase::WebContents() const {
return web_contents_;
}
content::RenderFrameHost* PasswordManagerBrowserTestBase::RenderFrameHost()
const {
return WebContents()->GetMainFrame();
}
void PasswordManagerBrowserTestBase::NavigateToFile(const std::string& path) {
ASSERT_EQ(web_contents_,
browser()->tab_strip_model()->GetActiveWebContents());
NavigationObserver observer(WebContents());
GURL url = embedded_test_server()->GetURL(path);
ui_test_utils::NavigateToURL(browser(), url);
observer.Wait();
}
void PasswordManagerBrowserTestBase::WaitForElementValue(
const std::string& element_id,
const std::string& expected_value) {
WaitForElementValue("null", element_id, expected_value);
}
void PasswordManagerBrowserTestBase::WaitForElementValue(
const std::string& iframe_id,
const std::string& element_id,
const std::string& expected_value) {
const std::string value_check_function = base::StringPrintf(
"function valueCheck() {"
" if (%s)"
" var element = document.getElementById("
" '%s').contentDocument.getElementById('%s');"
" else "
" var element = document.getElementById('%s');"
" return element && element.value == '%s';"
"}",
iframe_id.c_str(), iframe_id.c_str(), element_id.c_str(),
element_id.c_str(), expected_value.c_str());
const std::string script =
value_check_function +
base::StringPrintf(
"if (valueCheck()) {"
" /* Spin the event loop with setTimeout. */"
" setTimeout(window.domAutomationController.send(%d), 0);"
"} else {"
" if (%s)"
" var element = document.getElementById("
" '%s').contentDocument.getElementById('%s');"
" else "
" var element = document.getElementById('%s');"
" if (!element)"
" window.domAutomationController.send(%d);"
" element.onchange = function() {"
" if (valueCheck()) {"
" /* Spin the event loop with setTimeout. */"
" setTimeout(window.domAutomationController.send(%d), 0);"
" } else {"
" window.domAutomationController.send(%d);"
" }"
// This script should never send more than one message because only 1
// message is expected. Any further messages might be processed in
// subsequent script executions, that could lead to failures or
// flakiness. Leaving onchange handler would cause sending messages
// on any further onchange events.
" element.onchange = undefined;"
" };"
"}",
RETURN_CODE_OK, iframe_id.c_str(), iframe_id.c_str(),
element_id.c_str(), element_id.c_str(), RETURN_CODE_NO_ELEMENT,
RETURN_CODE_OK, RETURN_CODE_WRONG_VALUE);
int return_value = RETURN_CODE_INVALID;
ASSERT_TRUE(content::ExecuteScriptWithoutUserGestureAndExtractInt(
RenderFrameHost(), script, &return_value));
EXPECT_EQ(RETURN_CODE_OK, return_value)
<< "element_id = " << element_id
<< ", expected_value = " << expected_value;
}
void PasswordManagerBrowserTestBase::WaitForElementValue(
const std::string& form_id,
size_t elements_index,
const std::string& expected_value) {
const std::string element_selector =
base::StringPrintf("document.getElementById('%s').elements['%zu']",
form_id.c_str(), elements_index);
WaitForJsElementValue(element_selector, expected_value);
}
void PasswordManagerBrowserTestBase::WaitForJsElementValue(
const std::string& element_selector,
const std::string& expected_value) {
const std::string value_check_function = base::StringPrintf(
"function valueCheck() {"
" var element = %s;"
" return element && element.value == '%s';"
"}",
element_selector.c_str(), expected_value.c_str());
const std::string script =
value_check_function +
base::StringPrintf(
"if (valueCheck()) {"
" /* Spin the event loop with setTimeout. */"
" setTimeout(window.domAutomationController.send(%d), 0);"
"} else {"
" var element = %s;"
" if (!element)"
" window.domAutomationController.send(%d);"
" element.onchange = function() {"
" if (valueCheck()) {"
" /* Spin the event loop with setTimeout. */"
" setTimeout(window.domAutomationController.send(%d), 0);"
" } else {"
" window.domAutomationController.send(%d);"
" }"
// This script should never send more than one message because only 1
// message is expected. Any further messages might be processed in
// subsequent script executions, that could lead to failures or
// flakiness. Leaving onchange handler would cause sending messages
// on any further onchange events.
" element.onchange = undefined;"
" };"
"}",
RETURN_CODE_OK, element_selector.c_str(), RETURN_CODE_NO_ELEMENT,
RETURN_CODE_OK, RETURN_CODE_WRONG_VALUE);
int return_value = RETURN_CODE_INVALID;
ASSERT_TRUE(content::ExecuteScriptWithoutUserGestureAndExtractInt(
RenderFrameHost(), script, &return_value));
EXPECT_EQ(RETURN_CODE_OK, return_value)
<< "element_selector = " << element_selector
<< ", expected_value = " << expected_value;
}
void PasswordManagerBrowserTestBase::WaitForPasswordStore() {
scoped_refptr<password_manager::PasswordStore> password_store =
PasswordStoreFactory::GetForProfile(browser()->profile(),
ServiceAccessType::IMPLICIT_ACCESS);
PasswordStoreResultsObserver syncer;
password_store->GetAutofillableLoginsWithAffiliationAndBrandingInformation(
&syncer);
syncer.Wait();
}
void PasswordManagerBrowserTestBase::CheckElementValue(
const std::string& element_id,
const std::string& expected_value) {
CheckElementValue("null", element_id, expected_value);
}
void PasswordManagerBrowserTestBase::CheckElementValue(
const std::string& iframe_id,
const std::string& element_id,
const std::string& expected_value) {
const std::string value_get_script = base::StringPrintf(
"if (%s)"
" var element = document.getElementById("
" '%s').contentDocument.getElementById('%s');"
"else "
" var element = document.getElementById('%s');"
"var value = element ? element.value : 'element not found';"
"window.domAutomationController.send(value);",
iframe_id.c_str(), iframe_id.c_str(), element_id.c_str(),
element_id.c_str());
std::string return_value;
ASSERT_TRUE(content::ExecuteScriptWithoutUserGestureAndExtractString(
RenderFrameHost(), value_get_script, &return_value));
EXPECT_EQ(expected_value, return_value) << "element_id = " << element_id;
}
void PasswordManagerBrowserTestBase::AddHSTSHost(const std::string& host) {
network::mojom::NetworkContext* network_context =
content::BrowserContext::GetDefaultStoragePartition(browser()->profile())
->GetNetworkContext();
base::Time expiry = base::Time::Now() + base::TimeDelta::FromDays(1000);
bool include_subdomains = false;
base::RunLoop run_loop;
network_context->AddHSTSForTesting(host, expiry, include_subdomains,
run_loop.QuitClosure());
run_loop.Run();
}
void PasswordManagerBrowserTestBase::CheckThatCredentialsStored(
const std::string& username,
const std::string& password) {
scoped_refptr<password_manager::TestPasswordStore> password_store =
static_cast<password_manager::TestPasswordStore*>(
PasswordStoreFactory::GetForProfile(
browser()->profile(), ServiceAccessType::IMPLICIT_ACCESS)
.get());
auto& passwords_map = password_store->stored_passwords();
ASSERT_EQ(1u, passwords_map.size());
auto& passwords_vector = passwords_map.begin()->second;
ASSERT_EQ(1u, passwords_vector.size());
const autofill::PasswordForm& form = passwords_vector[0];
EXPECT_EQ(base::ASCIIToUTF16(username), form.username_value);
EXPECT_EQ(base::ASCIIToUTF16(password), form.password_value);
}