Google Git
Sign in
chromium / chromium / src / ada5164b5ba2ff7f74fecb832065340368119645 / . / chrome / browser / password_manager / chrome_password_manager_client_unittest.cc
blob: 75f20cb444b3b8e639a9096c22f2fa4f8565dedb [file] [log] [blame]
// Copyright 2014 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/password_manager/chrome_password_manager_client.h"
#include <stdint.h>
#include <string>
#include <utility>
#include "base/bind.h"
#include "base/command_line.h"
#include "base/macros.h"
#include "base/run_loop.h"
#include "base/strings/string16.h"
#include "base/strings/stringprintf.h"
#include "base/strings/utf_string_conversions.h"
#include "base/test/scoped_feature_list.h"
#include "build/build_config.h"
#include "chrome/browser/autofill/mock_address_accessory_controller.h"
#include "chrome/browser/autofill/mock_manual_filling_view.h"
#include "chrome/browser/autofill/mock_password_accessory_controller.h"
#include "chrome/browser/metrics/chrome_metrics_service_accessor.h"
#include "chrome/browser/password_manager/password_store_factory.h"
#include "chrome/browser/safe_browsing/test_safe_browsing_service.h"
#include "chrome/browser/safe_browsing/user_interaction_observer.h"
#include "chrome/browser/sync/profile_sync_service_factory.h"
#include "chrome/test/base/chrome_render_view_host_test_harness.h"
#include "chrome/test/base/testing_profile.h"
#include "components/autofill/content/common/mojom/autofill_agent.mojom.h"
#include "components/autofill/core/browser/logging/log_manager.h"
#include "components/autofill/core/browser/logging/log_receiver.h"
#include "components/autofill/core/browser/logging/log_router.h"
#include "components/autofill/core/browser/test_autofill_client.h"
#include "components/autofill/core/common/autofill_features.h"
#include "components/autofill/core/common/password_form.h"
#include "components/favicon/core/test/mock_favicon_service.h"
#include "components/password_manager/content/browser/content_password_manager_driver.h"
#include "components/password_manager/content/browser/password_manager_log_router_factory.h"
#include "components/password_manager/core/browser/credential_cache.h"
#include "components/password_manager/core/browser/credentials_filter.h"
#include "components/password_manager/core/browser/mock_password_store.h"
#include "components/password_manager/core/browser/password_manager.h"
#include "components/password_manager/core/browser/password_manager_test_utils.h"
#include "components/password_manager/core/browser/stub_password_manager_client.h"
#include "components/password_manager/core/common/credential_manager_types.h"
#include "components/password_manager/core/common/password_manager_features.h"
#include "components/password_manager/core/common/password_manager_pref_names.h"
#include "components/prefs/pref_registry_simple.h"
#include "components/prefs/pref_service.h"
#include "components/prefs/testing_pref_service.h"
#include "components/safe_browsing/buildflags.h"
#include "components/safe_browsing/core/features.h"
#include "components/sessions/content/content_record_password_state.h"
#include "components/sync/driver/test_sync_service.h"
#include "components/sync_preferences/testing_pref_service_syncable.h"
#include "content/public/browser/browser_context.h"
#include "content/public/browser/navigation_entry.h"
#include "content/public/browser/web_contents.h"
#include "content/public/browser/web_contents_observer.h"
#include "content/public/common/content_switches.h"
#include "content/public/common/url_constants.h"
#include "content/public/test/mock_navigation_handle.h"
#include "content/public/test/navigation_simulator.h"
#include "content/public/test/web_contents_tester.h"
#include "mojo/public/cpp/bindings/associated_receiver.h"
#include "mojo/public/cpp/bindings/pending_associated_receiver.h"
#include "mojo/public/cpp/bindings/pending_receiver.h"
#include "services/service_manager/public/cpp/interface_provider.h"
#include "testing/gmock/include/gmock/gmock.h"
#include "testing/gtest/include/gtest/gtest.h"
#include "third_party/blink/public/common/associated_interfaces/associated_interface_provider.h"
#include "url/url_constants.h"
#if BUILDFLAG(ENABLE_EXTENSIONS)
#include "extensions/common/constants.h"
#endif
#if BUILDFLAG(FULL_SAFE_BROWSING)
#include "components/safe_browsing/content/password_protection/mock_password_protection_service.h"
#endif
#if defined(OS_ANDROID)
#include "chrome/browser/autofill/manual_filling_controller_impl.h"
#include "chrome/browser/autofill/mock_address_accessory_controller.h"
#include "chrome/browser/autofill/mock_credit_card_accessory_controller.h"
#include "chrome/browser/autofill/mock_manual_filling_view.h"
#include "chrome/browser/password_manager/android/password_accessory_controller_impl.h"
#include "chrome/browser/password_manager/android/password_generation_controller.h"
#endif // defined(OS_ANDROID)
using autofill::PasswordForm;
using autofill::mojom::FocusedFieldType;
using content::BrowserContext;
using content::WebContents;
using password_manager::PasswordManagerClient;
using sessions::GetPasswordStateFromNavigation;
using sessions::SerializedNavigationEntry;
using testing::_;
using testing::NiceMock;
using testing::Return;
using testing::StrictMock;
#if defined(OS_ANDROID)
using password_manager::CredentialCache;
#endif
namespace {
// TODO(crbug.com/474577): Get rid of the mocked client in the client's own
// test.
class MockChromePasswordManagerClient : public ChromePasswordManagerClient {
public:
MOCK_CONST_METHOD0(GetMainFrameCertStatus, net::CertStatus());
explicit MockChromePasswordManagerClient(content::WebContents* web_contents)
: ChromePasswordManagerClient(web_contents, nullptr) {
ON_CALL(*this, GetMainFrameCertStatus()).WillByDefault(testing::Return(0));
#if BUILDFLAG(FULL_SAFE_BROWSING)
password_protection_service_ =
std::make_unique<safe_browsing::MockPasswordProtectionService>();
#endif
}
#if BUILDFLAG(FULL_SAFE_BROWSING)
safe_browsing::PasswordProtectionService* GetPasswordProtectionService()
const override {
return password_protection_service_.get();
}
safe_browsing::MockPasswordProtectionService* password_protection_service() {
return password_protection_service_.get();
}
#endif
private:
#if BUILDFLAG(FULL_SAFE_BROWSING)
std::unique_ptr<safe_browsing::MockPasswordProtectionService>
password_protection_service_;
#endif
DISALLOW_COPY_AND_ASSIGN(MockChromePasswordManagerClient);
};
class DummyLogReceiver : public autofill::LogReceiver {
public:
DummyLogReceiver() = default;
void LogEntry(const base::Value& entry) override {}
private:
DISALLOW_COPY_AND_ASSIGN(DummyLogReceiver);
};
class FakePasswordAutofillAgent
: public autofill::mojom::PasswordAutofillAgent {
public:
void BindReceiver(mojo::ScopedInterfaceEndpointHandle handle) {
receiver_.Bind(
mojo::PendingAssociatedReceiver<autofill::mojom::PasswordAutofillAgent>(
std::move(handle)));
}
bool called_set_logging_state() { return called_set_logging_state_; }
bool logging_state_active() { return logging_state_active_; }
void reset_data() {
called_set_logging_state_ = false;
logging_state_active_ = false;
}
private:
// autofill::mojom::PasswordAutofillAgent:
void FillPasswordForm(
const autofill::PasswordFormFillData& form_data) override {}
void InformNoSavedCredentials(
bool should_show_popup_without_passwords) override {}
void FillIntoFocusedField(bool is_password,
const base::string16& credential) override {}
void AnnotateFieldsWithParsingResult(
const autofill::ParsingResult& parsing_result) override {}
void SetLoggingState(bool active) override {
called_set_logging_state_ = true;
logging_state_active_ = active;
}
void TouchToFillClosed(bool show_virtual_keyboard) override {}
// Records whether SetLoggingState() gets called.
bool called_set_logging_state_ = false;
// Records data received via SetLoggingState() call.
bool logging_state_active_ = false;
mojo::AssociatedReceiver<autofill::mojom::PasswordAutofillAgent> receiver_{
this};
};
std::unique_ptr<KeyedService> CreateTestSyncService(
content::BrowserContext* context) {
return std::make_unique<syncer::TestSyncService>();
}
} // namespace
class ChromePasswordManagerClientTest : public ChromeRenderViewHostTestHarness {
public:
void SetUp() override;
void TearDown() override;
sync_preferences::TestingPrefServiceSyncable* prefs() {
return profile()->GetTestingPrefService();
}
// Caller does not own the returned pointer.
syncer::TestSyncService* SetupBasicTestSync() {
syncer::TestSyncService* sync_service =
static_cast<syncer::TestSyncService*>(
ProfileSyncServiceFactory::GetInstance()->SetTestingFactoryAndUse(
profile(), base::BindRepeating(&CreateTestSyncService)));
return sync_service;
}
// Make a navigation entry that will accept an annotation.
void SetupNavigationForAnnotation() {
syncer::TestSyncService* sync_service = SetupBasicTestSync();
sync_service->SetIsUsingSecondaryPassphrase(false);
metrics_enabled_ = true;
NavigateAndCommit(GURL("about:blank"));
}
protected:
ChromePasswordManagerClient* GetClient();
// If autofill::mojom::PasswordAutofillAgent::SetLoggingState() got called,
// copies its argument into |activation_flag| and returns true. Otherwise
// returns false.
bool WasLoggingActivationMessageSent(bool* activation_flag);
FakePasswordAutofillAgent fake_agent_;
TestingPrefServiceSimple prefs_;
bool metrics_enabled_ = false;
base::test::ScopedFeatureList scoped_feature_list_;
};
void ChromePasswordManagerClientTest::SetUp() {
ChromeRenderViewHostTestHarness::SetUp();
blink::AssociatedInterfaceProvider* remote_interfaces =
web_contents()->GetMainFrame()->GetRemoteAssociatedInterfaces();
remote_interfaces->OverrideBinderForTesting(
autofill::mojom::PasswordAutofillAgent::Name_,
base::BindRepeating(&FakePasswordAutofillAgent::BindReceiver,
base::Unretained(&fake_agent_)));
prefs_.registry()->RegisterBooleanPref(
password_manager::prefs::kCredentialsEnableService, true);
ChromePasswordManagerClient::CreateForWebContentsWithAutofillClient(
web_contents(), nullptr);
// Connect our bool for testing.
ChromeMetricsServiceAccessor::SetMetricsAndCrashReportingForTesting(
&metrics_enabled_);
scoped_feature_list_.InitAndEnableFeature(safe_browsing::kDelayedWarnings);
}
void ChromePasswordManagerClientTest::TearDown() {
ChromeMetricsServiceAccessor::SetMetricsAndCrashReportingForTesting(nullptr);
ChromeRenderViewHostTestHarness::TearDown();
}
ChromePasswordManagerClient* ChromePasswordManagerClientTest::GetClient() {
return ChromePasswordManagerClient::FromWebContents(web_contents());
}
bool ChromePasswordManagerClientTest::WasLoggingActivationMessageSent(
bool* activation_flag) {
base::RunLoop().RunUntilIdle();
if (!fake_agent_.called_set_logging_state())
return false;
if (activation_flag)
*activation_flag = fake_agent_.logging_state_active();
fake_agent_.reset_data();
return true;
}
TEST_F(ChromePasswordManagerClientTest, LogEntryNotifyRenderer) {
bool logging_active = true;
// Ensure the existence of a driver, which will send the IPCs we listen for
// below.
NavigateAndCommit(GURL("about:blank"));
// Initially, the logging should be off, so no IPC messages.
EXPECT_TRUE(!WasLoggingActivationMessageSent(&logging_active) ||
!logging_active)
<< "logging_active=" << logging_active;
DummyLogReceiver log_receiver;
autofill::LogRouter* log_router =
password_manager::PasswordManagerLogRouterFactory::GetForBrowserContext(
profile());
EXPECT_EQ(std::vector<base::Value>(),
log_router->RegisterReceiver(&log_receiver));
EXPECT_TRUE(WasLoggingActivationMessageSent(&logging_active));
EXPECT_TRUE(logging_active);
log_router->UnregisterReceiver(&log_receiver);
EXPECT_TRUE(WasLoggingActivationMessageSent(&logging_active));
EXPECT_FALSE(logging_active);
}
TEST_F(ChromePasswordManagerClientTest, GetPasswordSyncState) {
syncer::TestSyncService* sync_service = SetupBasicTestSync();
sync_service->SetActiveDataTypes(syncer::ModelTypeSet(syncer::PASSWORDS));
sync_service->SetIsUsingSecondaryPassphrase(false);
ChromePasswordManagerClient* client = GetClient();
// Passwords are syncing and custom passphrase isn't used.
EXPECT_EQ(password_manager::SYNCING_NORMAL_ENCRYPTION,
client->GetPasswordSyncState());
// Again, using a custom passphrase.
sync_service->SetIsUsingSecondaryPassphrase(true);
EXPECT_EQ(password_manager::SYNCING_WITH_CUSTOM_PASSPHRASE,
client->GetPasswordSyncState());
// Report correctly if we aren't syncing passwords.
sync_service->SetActiveDataTypes(syncer::ModelTypeSet(syncer::BOOKMARKS));
EXPECT_EQ(password_manager::NOT_SYNCING, client->GetPasswordSyncState());
// Again, without a custom passphrase.
sync_service->SetIsUsingSecondaryPassphrase(false);
EXPECT_EQ(password_manager::NOT_SYNCING, client->GetPasswordSyncState());
}
TEST_F(ChromePasswordManagerClientTest,
SavingDependsOnManagerEnabledPreference) {
// Test that saving passwords depends on the password manager enabled
// preference.
ChromePasswordManagerClient* client = GetClient();
prefs()->SetUserPref(password_manager::prefs::kCredentialsEnableService,
std::make_unique<base::Value>(true));
const GURL kUrlOn("https://accounts.google.com");
EXPECT_TRUE(client->IsSavingAndFillingEnabled(kUrlOn));
prefs()->SetUserPref(password_manager::prefs::kCredentialsEnableService,
std::make_unique<base::Value>(false));
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
}
TEST_F(ChromePasswordManagerClientTest, SavingAndFillingEnabledConditionsTest) {
std::unique_ptr<WebContents> test_web_contents(
content::WebContentsTester::CreateTestWebContents(
web_contents()->GetBrowserContext(), nullptr));
std::unique_ptr<MockChromePasswordManagerClient> client(
new MockChromePasswordManagerClient(test_web_contents.get()));
// Functionality disabled if there is an SSL error.
EXPECT_CALL(*client, GetMainFrameCertStatus())
.WillRepeatedly(Return(net::CERT_STATUS_AUTHORITY_INVALID));
const GURL kUrlOn("https://accounts.google.com");
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingFallbackEnabled(kUrlOn));
// Functionality disabled if there are SSL errors and the manager itself is
// disabled.
prefs()->SetUserPref(password_manager::prefs::kCredentialsEnableService,
std::make_unique<base::Value>(false));
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingFallbackEnabled(kUrlOn));
// Saving disabled if there are no SSL errors, but the manager itself is
// disabled.
EXPECT_CALL(*client, GetMainFrameCertStatus()).WillRepeatedly(Return(0));
prefs()->SetUserPref(password_manager::prefs::kCredentialsEnableService,
std::make_unique<base::Value>(false));
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingFallbackEnabled(kUrlOn));
// Functionality enabled if there are no SSL errors and the manager is
// enabled.
EXPECT_CALL(*client, GetMainFrameCertStatus()).WillRepeatedly(Return(0));
prefs()->SetUserPref(password_manager::prefs::kCredentialsEnableService,
std::make_unique<base::Value>(true));
EXPECT_TRUE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingFallbackEnabled(kUrlOn));
}
TEST_F(ChromePasswordManagerClientTest,
SavingAndFillingDisabledConditionsInIncognito) {
std::unique_ptr<WebContents> incognito_web_contents(
content::WebContentsTester::CreateTestWebContents(
profile()->GetPrimaryOTRProfile(), nullptr));
std::unique_ptr<MockChromePasswordManagerClient> client(
new MockChromePasswordManagerClient(incognito_web_contents.get()));
EXPECT_CALL(*client, GetMainFrameCertStatus()).WillRepeatedly(Return(0));
// Saving disabled in Incognito mode.
const GURL kUrlOn("https://accounts.google.com");
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingFallbackEnabled(kUrlOn));
// Saving disabled in Incognito mode also when manager itself is
// enabled.
prefs()->SetUserPref(password_manager::prefs::kCredentialsEnableService,
std::make_unique<base::Value>(true));
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingFallbackEnabled(kUrlOn));
// In guest mode saving is disabled, filling is enabled but there is in fact
// nothing to fill, manual filling is disabled.
profile()->SetGuestSession(true);
profile()->GetPrimaryOTRProfile()->AsTestingProfile()->SetGuestSession(true);
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_TRUE(client->IsFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingFallbackEnabled(kUrlOn));
}
TEST_F(ChromePasswordManagerClientTest, SavingDependsOnAutomation) {
// Test that saving passwords UI is disabled for automated tests.
ChromePasswordManagerClient* client = GetClient();
const GURL kUrlOn("https://accounts.google.com");
EXPECT_TRUE(client->IsSavingAndFillingEnabled(kUrlOn));
base::CommandLine::ForCurrentProcess()->AppendSwitch(
switches::kEnableAutomation);
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
}
// Check that password manager is disabled on about:blank pages.
// See https://crbug.com/756587.
TEST_F(ChromePasswordManagerClientTest, SavingAndFillingDisabledForAboutBlank) {
const GURL kUrl(url::kAboutBlankURL);
NavigateAndCommit(kUrl);
EXPECT_TRUE(GetClient()->GetLastCommittedOrigin().opaque());
EXPECT_FALSE(GetClient()->IsSavingAndFillingEnabled(kUrl));
EXPECT_FALSE(GetClient()->IsFillingEnabled(kUrl));
EXPECT_FALSE(GetClient()->IsFillingFallbackEnabled(kUrl));
}
TEST_F(ChromePasswordManagerClientTest,
IsFillingAndSavingOnGooglePasswordPage) {
PasswordManagerClient* client = GetClient();
EXPECT_FALSE(client->IsSavingAndFillingEnabled(
GURL("https://passwords.google.com/path?query=1")));
EXPECT_FALSE(client->IsFillingEnabled(
GURL("https://passwords.google.com/path?query=1")));
}
namespace {
struct SchemeTestCase {
const char* scheme;
bool password_manager_works;
};
const SchemeTestCase kTestCases[] = {
{url::kHttpScheme, true},
{url::kHttpsScheme, true},
{url::kFtpScheme, true},
{url::kDataScheme, true},
{"feed", true},
{"invalid-scheme-i-just-made-up", false},
{content::kChromeDevToolsScheme, false},
{content::kChromeUIScheme, false},
{url::kMailToScheme, false},
};
// Parameterized test that takes a URL scheme as a parameter. Every scheme
// requires a separate test because NavigateAndCommit can be called only once.
class ChromePasswordManagerClientSchemeTest
: public ChromePasswordManagerClientTest,
public ::testing::WithParamInterface<const char*> {
public:
static std::vector<const char*> GetSchemes() {
std::vector<const char*> result;
for (const SchemeTestCase& test_case : kTestCases) {
result.push_back(test_case.scheme);
}
return result;
}
};
TEST_P(ChromePasswordManagerClientSchemeTest,
SavingAndFillingOnDifferentSchemes) {
const GURL url(base::StringPrintf("%s://example.org", GetParam()));
VLOG(0) << url.possibly_invalid_spec();
NavigateAndCommit(url);
EXPECT_EQ(url::Origin::Create(url).GetURL(),
GetClient()->GetLastCommittedOrigin().GetURL());
auto* it = std::find_if(
std::begin(kTestCases), std::end(kTestCases),
[](auto test_case) { return strcmp(test_case.scheme, GetParam()) == 0; });
ASSERT_FALSE(it == std::end(kTestCases));
EXPECT_EQ(it->password_manager_works,
GetClient()->IsSavingAndFillingEnabled(url));
EXPECT_EQ(it->password_manager_works, GetClient()->IsFillingEnabled(url));
EXPECT_EQ(it->password_manager_works,
GetClient()->IsFillingFallbackEnabled(url));
}
INSTANTIATE_TEST_SUITE_P(
All,
ChromePasswordManagerClientSchemeTest,
::testing::ValuesIn(ChromePasswordManagerClientSchemeTest::GetSchemes()));
} // namespace
TEST_F(ChromePasswordManagerClientTest, GetLastCommittedEntryURL_Empty) {
EXPECT_TRUE(GetClient()->GetLastCommittedOrigin().opaque());
}
TEST_F(ChromePasswordManagerClientTest, GetLastCommittedEntryURL) {
GURL kUrl(
"https://accounts.google.com/ServiceLogin?continue="
"https://passwords.google.com/settings");
NavigateAndCommit(kUrl);
EXPECT_EQ(url::Origin::Create(kUrl), GetClient()->GetLastCommittedOrigin());
}
TEST_F(ChromePasswordManagerClientTest, WebUINoLogging) {
// Make sure that logging is active.
autofill::LogRouter* log_router =
password_manager::PasswordManagerLogRouterFactory::GetForBrowserContext(
profile());
DummyLogReceiver log_receiver;
EXPECT_EQ(std::vector<base::Value>(),
log_router->RegisterReceiver(&log_receiver));
// But then navigate to a WebUI, there the logging should not be active.
NavigateAndCommit(GURL("about:password-manager-internals"));
EXPECT_FALSE(GetClient()->GetLogManager()->IsLoggingActive());
log_router->UnregisterReceiver(&log_receiver);
}
// Metrics enabled, syncing with non-custom passphrase: Do not annotate.
TEST_F(ChromePasswordManagerClientTest,
AnnotateNavigationEntryWithMetricsNoCustom) {
syncer::TestSyncService* sync_service = SetupBasicTestSync();
sync_service->SetIsUsingSecondaryPassphrase(false);
metrics_enabled_ = true;
NavigateAndCommit(GURL("about:blank"));
GetClient()->AnnotateNavigationEntry(true);
EXPECT_EQ(
SerializedNavigationEntry::HAS_PASSWORD_FIELD,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// Metrics disabled, syncing with non-custom passphrase: Do not annotate.
TEST_F(ChromePasswordManagerClientTest,
AnnotateNavigationEntryNoMetricsNoCustom) {
syncer::TestSyncService* sync_service = SetupBasicTestSync();
sync_service->SetIsUsingSecondaryPassphrase(false);
metrics_enabled_ = false;
NavigateAndCommit(GURL("about:blank"));
GetClient()->AnnotateNavigationEntry(true);
EXPECT_EQ(
SerializedNavigationEntry::PASSWORD_STATE_UNKNOWN,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// Metrics enabled, syncing with custom passphrase: Do not annotate.
TEST_F(ChromePasswordManagerClientTest,
AnnotateNavigationEntryWithMetricsWithCustom) {
syncer::TestSyncService* sync_service = SetupBasicTestSync();
sync_service->SetIsUsingSecondaryPassphrase(true);
metrics_enabled_ = true;
NavigateAndCommit(GURL("about:blank"));
GetClient()->AnnotateNavigationEntry(true);
EXPECT_EQ(
SerializedNavigationEntry::PASSWORD_STATE_UNKNOWN,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// Metrics disabled, syncing with custom passphrase: Do not annotate.
TEST_F(ChromePasswordManagerClientTest,
AnnotateNavigationEntryNoMetricsWithCustom) {
syncer::TestSyncService* sync_service = SetupBasicTestSync();
sync_service->SetIsUsingSecondaryPassphrase(true);
metrics_enabled_ = false;
NavigateAndCommit(GURL("about:blank"));
GetClient()->AnnotateNavigationEntry(true);
EXPECT_EQ(
SerializedNavigationEntry::PASSWORD_STATE_UNKNOWN,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// State transition: Unannotated
TEST_F(ChromePasswordManagerClientTest, AnnotateNavigationEntryUnannotated) {
SetupNavigationForAnnotation();
EXPECT_EQ(
SerializedNavigationEntry::PASSWORD_STATE_UNKNOWN,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// State transition: unknown->false
TEST_F(ChromePasswordManagerClientTest, AnnotateNavigationEntryToFalse) {
SetupNavigationForAnnotation();
GetClient()->AnnotateNavigationEntry(false);
EXPECT_EQ(
SerializedNavigationEntry::NO_PASSWORD_FIELD,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// State transition: false->true
TEST_F(ChromePasswordManagerClientTest, AnnotateNavigationEntryToTrue) {
SetupNavigationForAnnotation();
GetClient()->AnnotateNavigationEntry(false);
GetClient()->AnnotateNavigationEntry(true);
EXPECT_EQ(
SerializedNavigationEntry::HAS_PASSWORD_FIELD,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// State transition: true->false (retains true)
TEST_F(ChromePasswordManagerClientTest, AnnotateNavigationEntryTrueToFalse) {
SetupNavigationForAnnotation();
GetClient()->AnnotateNavigationEntry(true);
GetClient()->AnnotateNavigationEntry(false);
EXPECT_EQ(
SerializedNavigationEntry::HAS_PASSWORD_FIELD,
GetPasswordStateFromNavigation(controller().GetLastCommittedEntry()));
}
// Handle missing ChromePasswordManagerClient instance in BindCredentialManager
// gracefully.
TEST_F(ChromePasswordManagerClientTest, BindCredentialManager_MissingInstance) {
// Create a WebContent without tab helpers.
std::unique_ptr<content::WebContents> web_contents =
content::WebContents::Create(
content::WebContents::CreateParams(profile()));
// In particular, this WebContent should not have the
// ChromePasswordManagerClient.
ASSERT_FALSE(
ChromePasswordManagerClient::FromWebContents(web_contents.get()));
// This call should not crash.
ChromePasswordManagerClient::BindCredentialManager(
web_contents->GetMainFrame(), mojo::NullReceiver());
}
TEST_F(ChromePasswordManagerClientTest, CanShowBubbleOnURL) {
struct TestCase {
const char* scheme;
bool can_show_bubble;
} kTestCases[] = {
{url::kHttpScheme, true},
{url::kHttpsScheme, true},
{url::kFtpScheme, true},
{url::kDataScheme, true},
{"feed", true},
{url::kBlobScheme, true},
{url::kFileSystemScheme, true},
{"invalid-scheme-i-just-made-up", false},
#if BUILDFLAG(ENABLE_EXTENSIONS)
{extensions::kExtensionScheme, false},
#endif
{url::kAboutScheme, false},
{content::kChromeDevToolsScheme, false},
{content::kChromeUIScheme, false},
{url::kJavaScriptScheme, false},
{url::kMailToScheme, false},
{content::kViewSourceScheme, false},
};
for (const TestCase& test_case : kTestCases) {
// CanShowBubbleOnURL currently only depends on the scheme.
GURL url(base::StringPrintf("%s://example.org", test_case.scheme));
SCOPED_TRACE(url.possibly_invalid_spec());
EXPECT_EQ(test_case.can_show_bubble,
ChromePasswordManagerClient::CanShowBubbleOnURL(url));
}
}
#if BUILDFLAG(FULL_SAFE_BROWSING)
TEST_F(ChromePasswordManagerClientTest,
VerifyMaybeStartPasswordFieldOnFocusRequestCalled) {
std::unique_ptr<WebContents> test_web_contents(
content::WebContentsTester::CreateTestWebContents(
web_contents()->GetBrowserContext(), nullptr));
std::unique_ptr<MockChromePasswordManagerClient> client(
new MockChromePasswordManagerClient(test_web_contents.get()));
EXPECT_CALL(*client->password_protection_service(),
MaybeStartPasswordFieldOnFocusRequest(_, _, _, _, _))
.Times(1);
PasswordManagerClient* mojom_client = client.get();
mojom_client->CheckSafeBrowsingReputation(GURL("http://foo.com/submit"),
GURL("http://foo.com/iframe.html"));
}
// SafeBrowsing Delayed Warnings experiment can delay certain SafeBrowsing
// warnings until user interaction. This test checks that when a SafeBrowsing
// warning is delayed, password saving and filling is disabled on the page.
TEST_F(ChromePasswordManagerClientTest,
SavingAndFillingDisabledConditionsDelayedWarnings) {
std::unique_ptr<WebContents> test_web_contents(
content::WebContentsTester::CreateTestWebContents(
web_contents()->GetBrowserContext(), nullptr));
// Warnings are delayed until the user interacts with the page. This is
// achieved by attaching an observer (SafeBrowsingUserInteractionObserver) to
// the current WebContents. Create an observer and attach it to simulate a
// delayed warning.
auto safe_browsing_service =
base::MakeRefCounted<safe_browsing::TestSafeBrowsingService>();
auto ui_manager =
base::MakeRefCounted<safe_browsing::TestSafeBrowsingUIManager>(
safe_browsing_service);
security_interstitials::UnsafeResource resource;
safe_browsing::SafeBrowsingUserInteractionObserver::CreateForWebContents(
test_web_contents.get(), resource, /* is_main_frame= */ true, ui_manager);
auto client = std::make_unique<MockChromePasswordManagerClient>(
test_web_contents.get());
// Saving is disabled when the page has a delayed SafeBrowsing warning.
const GURL kUrlOn("https://accounts.google.com");
EXPECT_FALSE(client->IsSavingAndFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingEnabled(kUrlOn));
EXPECT_FALSE(client->IsFillingFallbackEnabled(kUrlOn));
}
TEST_F(ChromePasswordManagerClientTest,
VerifyMaybeProtectedPasswordEntryRequestCalled) {
std::unique_ptr<WebContents> test_web_contents(
content::WebContentsTester::CreateTestWebContents(
web_contents()->GetBrowserContext(), nullptr));
std::unique_ptr<MockChromePasswordManagerClient> client(
new MockChromePasswordManagerClient(test_web_contents.get()));
EXPECT_CALL(
*client->password_protection_service(),
MaybeStartProtectedPasswordEntryRequest(_, _, "username", _, _, true))
.Times(4);
std::vector<password_manager::MatchingReusedCredential> credentials = {
{"saved_domain.com", base::ASCIIToUTF16("username")}};
client->CheckProtectedPasswordEntry(
password_manager::metrics_util::PasswordType::SAVED_PASSWORD, "username",
credentials, true);
client->CheckProtectedPasswordEntry(
password_manager::metrics_util::PasswordType::PRIMARY_ACCOUNT_PASSWORD,
"username", credentials, true);
client->CheckProtectedPasswordEntry(
password_manager::metrics_util::PasswordType::OTHER_GAIA_PASSWORD,
"username", credentials, true);
client->CheckProtectedPasswordEntry(
password_manager::metrics_util::PasswordType::ENTERPRISE_PASSWORD,
"username", credentials, true);
}
TEST_F(ChromePasswordManagerClientTest, VerifyLogPasswordReuseDetectedEvent) {
std::unique_ptr<WebContents> test_web_contents(
content::WebContentsTester::CreateTestWebContents(
web_contents()->GetBrowserContext(), nullptr));
std::unique_ptr<MockChromePasswordManagerClient> client(
new MockChromePasswordManagerClient(test_web_contents.get()));
EXPECT_CALL(*client->password_protection_service(),
MaybeLogPasswordReuseDetectedEvent(test_web_contents.get()))
.Times(1);
client->LogPasswordReuseDetectedEvent();
}
#endif
TEST_F(ChromePasswordManagerClientTest, MissingUIDelegate) {
// Checks that the saving fallback methods don't crash if there is no UI
// delegate. It can happen on ChromeOS login form, for example.
GURL kUrl("https://example.com/");
NavigateAndCommit(kUrl);
PasswordManagerClient* client = GetClient();
client->ShowManualFallbackForSaving(nullptr, false, false);
client->HideManualFallbackForSaving();
}
#if defined(OS_ANDROID)
class ChromePasswordManagerClientAndroidTest
: public ChromePasswordManagerClientTest {
protected:
std::unique_ptr<password_manager::ContentPasswordManagerDriver>
CreateContentPasswordManagerDriver(content::RenderFrameHost* rfh);
void CreateManualFillingController(content::WebContents* web_contents);
ManualFillingControllerImpl* controller() {
return ManualFillingControllerImpl::FromWebContents(web_contents());
}
MockManualFillingView* view() {
return static_cast<MockManualFillingView*>(controller()->view());
}
private:
autofill::TestAutofillClient test_autofill_client_;
NiceMock<MockPasswordAccessoryController> mock_pwd_controller_;
NiceMock<MockAddressAccessoryController> mock_address_controller_;
NiceMock<MockCreditCardAccessoryController> mock_cc_controller_;
};
std::unique_ptr<password_manager::ContentPasswordManagerDriver>
ChromePasswordManagerClientAndroidTest::CreateContentPasswordManagerDriver(
content::RenderFrameHost* rfh) {
return std::make_unique<password_manager::ContentPasswordManagerDriver>(
rfh, GetClient(), &test_autofill_client_);
}
void ChromePasswordManagerClientAndroidTest::CreateManualFillingController(
content::WebContents* web_contents) {
ManualFillingControllerImpl::CreateForWebContentsForTesting(
web_contents, mock_pwd_controller_.AsWeakPtr(),
mock_address_controller_.AsWeakPtr(), mock_cc_controller_.AsWeakPtr(),
std::make_unique<NiceMock<MockManualFillingView>>());
}
TEST_F(ChromePasswordManagerClientAndroidTest,
FocusedInputChangedNoFrameFillableField) {
CreateManualFillingController(web_contents());
ASSERT_FALSE(web_contents()->GetFocusedFrame());
ChromePasswordManagerClient* client = GetClient();
std::unique_ptr<password_manager::ContentPasswordManagerDriver> driver =
CreateContentPasswordManagerDriver(main_rfh());
client->FocusedInputChanged(driver.get(),
FocusedFieldType::kFillablePasswordField);
PasswordGenerationController* pwd_generation_controller =
PasswordGenerationController::GetIfExisting(web_contents());
EXPECT_FALSE(pwd_generation_controller);
}
TEST_F(ChromePasswordManagerClientAndroidTest,
FocusedInputChangedNoFrameNoField) {
CreateManualFillingController(web_contents());
std::unique_ptr<password_manager::ContentPasswordManagerDriver> driver =
CreateContentPasswordManagerDriver(main_rfh());
// Simulate that an element was focused before as far as the generation
// controller is concerned.
PasswordGenerationController* pwd_generation_controller =
PasswordGenerationController::GetOrCreate(web_contents());
pwd_generation_controller->FocusedInputChanged(
FocusedFieldType::kFillablePasswordField, driver.get()->AsWeakPtr());
ChromePasswordManagerClient* client = GetClient();
ASSERT_FALSE(web_contents()->GetFocusedFrame());
ASSERT_TRUE(pwd_generation_controller->GetActiveFrameDriver());
client->FocusedInputChanged(driver.get(), FocusedFieldType::kUnknown);
// Check that the event was processed by the generation controller and that
// the active frame driver was unset.
EXPECT_FALSE(pwd_generation_controller->GetActiveFrameDriver());
}
TEST_F(ChromePasswordManagerClientAndroidTest, FocusedInputChangedWrongFrame) {
ChromePasswordManagerClient* client = GetClient();
// Set up the main frame.
NavigateAndCommit(GURL("https://example.com"));
FocusWebContentsOnMainFrame();
CreateManualFillingController(web_contents());
content::RenderFrameHost* subframe =
content::RenderFrameHostTester::For(main_rfh())->AppendChild("subframe");
std::unique_ptr<password_manager::ContentPasswordManagerDriver> driver =
CreateContentPasswordManagerDriver(subframe);
client->FocusedInputChanged(driver.get(),
FocusedFieldType::kFillablePasswordField);
PasswordGenerationController* pwd_generation_controller =
PasswordGenerationController::GetIfExisting(web_contents());
// Check that no generation controller was created, since this event should be
// rejected and not passed on to a generation controller.
EXPECT_FALSE(pwd_generation_controller);
}
TEST_F(ChromePasswordManagerClientAndroidTest, FocusedInputChangedGoodFrame) {
ChromePasswordManagerClient* client = GetClient();
CreateManualFillingController(web_contents());
std::unique_ptr<password_manager::ContentPasswordManagerDriver> driver =
CreateContentPasswordManagerDriver(main_rfh());
FocusWebContentsOnMainFrame();
client->FocusedInputChanged(driver.get(),
FocusedFieldType::kFillablePasswordField);
PasswordGenerationController* pwd_generation_controller =
PasswordGenerationController::GetIfExisting(web_contents());
EXPECT_TRUE(pwd_generation_controller);
}
TEST_F(ChromePasswordManagerClientAndroidTest,
SameDocumentNavigationDoesNotClearCache) {
auto origin = url::Origin::Create(GURL("https://example.com"));
PasswordForm form;
form.url = origin.GetURL();
form.username_value = base::ASCIIToUTF16("alice");
form.password_value = base::ASCIIToUTF16("S3cr3t");
GetClient()
->GetCredentialCacheForTesting()
->SaveCredentialsAndBlacklistedForOrigin(
{&form}, CredentialCache::IsOriginBlacklisted(false), origin);
// Check that a navigation within the same document does not clear the cache.
content::MockNavigationHandle handle(web_contents());
handle.set_is_same_document(true);
handle.set_has_committed(true);
static_cast<content::WebContentsObserver*>(GetClient())
->DidFinishNavigation(&handle);
EXPECT_FALSE(GetClient()
->GetCredentialCacheForTesting()
->GetCredentialStore(origin)
.GetCredentials()
.empty());
// Check that a navigation to a different origin clears the cache.
NavigateAndCommit(GURL("https://example.org"));
EXPECT_TRUE(GetClient()
->GetCredentialCacheForTesting()
->GetCredentialStore(origin)
.GetCredentials()
.empty());
}
TEST_F(ChromePasswordManagerClientAndroidTest, HideFillingUIOnNavigatingAway) {
CreateManualFillingController(web_contents());
// Navigate to a URL with a bubble/popup.
GURL kUrl1("https://example.com/");
NavigateAndCommit(kUrl1);
EXPECT_TRUE(ChromePasswordManagerClient::CanShowBubbleOnURL(kUrl1));
// Navigating away should call Hide.
EXPECT_CALL(*view(), Hide());
GURL kUrl2("https://accounts.google.com");
NavigateAndCommit(kUrl2);
}
#endif // defined(OS_ANDROID)