chrome/browser/secure_origin_whitelist_browsertest.cc - chromium/src - Git at Google

 // Copyright (c) 2017 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #include "base/strings/utf_string_conversions.h"
 #include "chrome/browser/ui/browser.h"
 #include "chrome/browser/ui/tabs/tab_strip_model.h"
 #include "chrome/common/chrome_switches.h"
 #include "chrome/test/base/in_process_browser_test.h"
 #include "chrome/test/base/ui_test_utils.h"
 #include "components/policy/core/browser/browser_policy_connector.h"
 #include "components/policy/core/common/mock_configuration_policy_provider.h"
 #include "components/policy/policy_constants.h"
 #include "content/public/test/browser_test_utils.h"
 #include "net/dns/mock_host_resolver.h"

 namespace {
 // SecureOriginWhitelistBrowsertests differ in the setup of the browser. Since
 // the setup is done before the actual test is run, we need to parameterize our
 // tests outside of the actual test bodies. We use test variants for this,
 // instead of the usual setup of mulitple tests.
 enum class TestVariant { kNone, kCommandline, kPolicy, kPolicy2, kPolicy3 };
 }  // namespace

 // End-to-end browser test that ensures the secure origin whitelist works when
 // supplied via command-line or policy.
 // SecureOriginWhitelistUnittest will test the list parsing.
 class SecureOriginWhitelistBrowsertest
     : public InProcessBrowserTest,
       public testing::WithParamInterface<TestVariant> {
  public:
   void SetUpOnMainThread() override {
     // We need this, so we can request the test page from 'http://foo.com'.
     // (Which, unlike 127.0.0.1, is considered an insecure origin.)
     host_resolver()->AddRule("*", "127.0.0.1");
   }

   void SetUpCommandLine(base::CommandLine* command_line) override {
     // We need to know the server port to know what to add to the command-line.
     // The port number changes with every test run. Thus, we start the server
     // here. And since all tests, not just the variant with the command-line,
     // need the embedded server, we unconditionally start it here.
     EXPECT_TRUE(embedded_test_server()->Start());

     if (GetParam() != TestVariant::kCommandline)
       return;

     command_line->AppendSwitchASCII(
         switches::kUnsafelyTreatInsecureOriginAsSecure, BaseURL());
   }

   void SetUpInProcessBrowserTestFixture() override {
     TestVariant variant = GetParam();
     if (variant != TestVariant::kPolicy && variant != TestVariant::kPolicy2 &&
         variant != TestVariant::kPolicy3)
       return;

     // We setup the policy here, because the policy must be 'live' before
     // the renderer is created, since the value for this policy is passed
     // to the renderer via a command-line. Setting the policy in the test
     // itself or in SetUpOnMainThread works for update-able policies, but
     // is too late for this one.
     EXPECT_CALL(provider_, IsInitializationComplete(testing::_))
         .WillRepeatedly(testing::Return(true));
     policy::BrowserPolicyConnector::SetPolicyProviderForTesting(&provider_);

     base::Value::ListStorage urls;
     if (variant == TestVariant::kPolicy) {
       urls.push_back(base::Value(BaseURL()));
     } else if (variant == TestVariant::kPolicy2) {
       urls.push_back(base::Value(BaseURL()));
       urls.push_back(base::Value(OtherURL()));
     } else if (variant == TestVariant::kPolicy3) {
       urls.push_back(base::Value(OtherURL()));
       urls.push_back(base::Value(BaseURL()));
     }

     policy::PolicyMap values;
     values.Set(policy::key::kUnsafelyTreatInsecureOriginAsSecure,
                policy::POLICY_LEVEL_MANDATORY, policy::POLICY_SCOPE_USER,
                policy::POLICY_SOURCE_CLOUD,
                base::MakeUnique<base::Value>(std::move(urls)), nullptr);
     provider_.UpdateChromePolicy(values);
   }

   bool ExpectSecureContext() { return GetParam() != TestVariant::kNone; }

   std::string BaseURL() {
     return embedded_test_server()->GetURL("example.com", "/").spec();
   }

   std::string OtherURL() {
     return embedded_test_server()->GetURL("otherexample.com", "/").spec();
   }

  private:
   policy::MockConfigurationPolicyProvider provider_;
 };

 INSTANTIATE_TEST_CASE_P(SecureOriginWhitelistBrowsertest,
                         SecureOriginWhitelistBrowsertest,
                         testing::Values(TestVariant::kNone,
                                         TestVariant::kCommandline,
                                         TestVariant::kPolicy,
                                         TestVariant::kPolicy2,
                                         TestVariant::kPolicy3));

 IN_PROC_BROWSER_TEST_P(SecureOriginWhitelistBrowsertest, Simple) {
   GURL url = embedded_test_server()->GetURL(
       "example.com", "/secure_origin_whitelist_browsertest.html");
   ui_test_utils::NavigateToURL(browser(), url);

   base::string16 secure(base::ASCIIToUTF16("secure context"));
   base::string16 insecure(base::ASCIIToUTF16("insecure context"));

   content::TitleWatcher title_watcher(
       browser()->tab_strip_model()->GetActiveWebContents(), secure);
   title_watcher.AlsoWaitForTitle(insecure);

   EXPECT_EQ(title_watcher.WaitAndGetTitle(),
             ExpectSecureContext() ? secure : insecure);
 }
	// Copyright (c) 2017 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#include "base/strings/utf_string_conversions.h"
	#include "chrome/browser/ui/browser.h"
	#include "chrome/browser/ui/tabs/tab_strip_model.h"
	#include "chrome/common/chrome_switches.h"
	#include "chrome/test/base/in_process_browser_test.h"
	#include "chrome/test/base/ui_test_utils.h"
	#include "components/policy/core/browser/browser_policy_connector.h"
	#include "components/policy/core/common/mock_configuration_policy_provider.h"
	#include "components/policy/policy_constants.h"
	#include "content/public/test/browser_test_utils.h"
	#include "net/dns/mock_host_resolver.h"

	namespace {
	// SecureOriginWhitelistBrowsertests differ in the setup of the browser. Since
	// the setup is done before the actual test is run, we need to parameterize our
	// tests outside of the actual test bodies. We use test variants for this,
	// instead of the usual setup of mulitple tests.
	enum class TestVariant { kNone, kCommandline, kPolicy, kPolicy2, kPolicy3 };
	} // namespace

	// End-to-end browser test that ensures the secure origin whitelist works when
	// supplied via command-line or policy.
	// SecureOriginWhitelistUnittest will test the list parsing.
	class SecureOriginWhitelistBrowsertest
	: public InProcessBrowserTest,
	public testing::WithParamInterface<TestVariant> {
	public:
	void SetUpOnMainThread() override {
	// We need this, so we can request the test page from 'http://foo.com'.
	// (Which, unlike 127.0.0.1, is considered an insecure origin.)
	host_resolver()->AddRule("*", "127.0.0.1");
	}

	void SetUpCommandLine(base::CommandLine* command_line) override {
	// We need to know the server port to know what to add to the command-line.
	// The port number changes with every test run. Thus, we start the server
	// here. And since all tests, not just the variant with the command-line,
	// need the embedded server, we unconditionally start it here.
	EXPECT_TRUE(embedded_test_server()->Start());

	if (GetParam() != TestVariant::kCommandline)
	return;

	command_line->AppendSwitchASCII(
	switches::kUnsafelyTreatInsecureOriginAsSecure, BaseURL());
	}

	void SetUpInProcessBrowserTestFixture() override {
	TestVariant variant = GetParam();
	if (variant != TestVariant::kPolicy && variant != TestVariant::kPolicy2 &&
	variant != TestVariant::kPolicy3)
	return;

	// We setup the policy here, because the policy must be 'live' before
	// the renderer is created, since the value for this policy is passed
	// to the renderer via a command-line. Setting the policy in the test
	// itself or in SetUpOnMainThread works for update-able policies, but
	// is too late for this one.
	EXPECT_CALL(provider_, IsInitializationComplete(testing::_))
	.WillRepeatedly(testing::Return(true));
	policy::BrowserPolicyConnector::SetPolicyProviderForTesting(&provider_);

	base::Value::ListStorage urls;
	if (variant == TestVariant::kPolicy) {
	urls.push_back(base::Value(BaseURL()));
	} else if (variant == TestVariant::kPolicy2) {
	urls.push_back(base::Value(BaseURL()));
	urls.push_back(base::Value(OtherURL()));
	} else if (variant == TestVariant::kPolicy3) {
	urls.push_back(base::Value(OtherURL()));
	urls.push_back(base::Value(BaseURL()));
	}

	policy::PolicyMap values;
	values.Set(policy::key::kUnsafelyTreatInsecureOriginAsSecure,
	policy::POLICY_LEVEL_MANDATORY, policy::POLICY_SCOPE_USER,
	policy::POLICY_SOURCE_CLOUD,
	base::MakeUnique<base::Value>(std::move(urls)), nullptr);
	provider_.UpdateChromePolicy(values);
	}

	bool ExpectSecureContext() { return GetParam() != TestVariant::kNone; }

	std::string BaseURL() {
	return embedded_test_server()->GetURL("example.com", "/").spec();
	}

	std::string OtherURL() {
	return embedded_test_server()->GetURL("otherexample.com", "/").spec();
	}

	private:
	policy::MockConfigurationPolicyProvider provider_;
	};

	INSTANTIATE_TEST_CASE_P(SecureOriginWhitelistBrowsertest,
	SecureOriginWhitelistBrowsertest,
	testing::Values(TestVariant::kNone,
	TestVariant::kCommandline,
	TestVariant::kPolicy,
	TestVariant::kPolicy2,
	TestVariant::kPolicy3));

	IN_PROC_BROWSER_TEST_P(SecureOriginWhitelistBrowsertest, Simple) {
	GURL url = embedded_test_server()->GetURL(
	"example.com", "/secure_origin_whitelist_browsertest.html");
	ui_test_utils::NavigateToURL(browser(), url);

	base::string16 secure(base::ASCIIToUTF16("secure context"));
	base::string16 insecure(base::ASCIIToUTF16("insecure context"));

	content::TitleWatcher title_watcher(
	browser()->tab_strip_model()->GetActiveWebContents(), secure);
	title_watcher.AlsoWaitForTitle(insecure);

	EXPECT_EQ(title_watcher.WaitAndGetTitle(),
	ExpectSecureContext() ? secure : insecure);
	}