blob: cde9ce7345fb64e00b70d6acd1bab15cabf665e2 [file] [log] [blame]
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef CHROME_BROWSER_UI_PAGE_INFO_PAGE_INFO_H_
#define CHROME_BROWSER_UI_PAGE_INFO_PAGE_INFO_H_
#include "base/macros.h"
#include "base/strings/string16.h"
#include "build/build_config.h"
#include "chrome/browser/content_settings/tab_specific_content_settings.h"
#include "components/content_settings/core/common/content_settings.h"
#include "components/content_settings/core/common/content_settings_types.h"
#include "components/security_state/core/security_state.h"
#include "content/public/browser/web_contents_observer.h"
#include "ui/gfx/vector_icon_types.h"
#include "url/gurl.h"
namespace content {
class WebContents;
}
namespace net {
class X509Certificate;
}
namespace safe_browsing {
class ChromePasswordProtectionService;
}
class ChromeSSLHostStateDelegate;
class ChooserContextBase;
class HostContentSettingsMap;
class Profile;
class PageInfoUI;
class PageInfoBubbleViewBrowserTest;
// The |PageInfo| provides information about a website's permissions,
// connection state and its identity. It owns a UI that displays the
// information and allows users to change the permissions. |PageInfo|
// objects must be created on the heap. They destroy themselves after the UI is
// closed.
class PageInfo : public TabSpecificContentSettings::SiteDataObserver,
public content::WebContentsObserver {
public:
// TODO(palmer): Figure out if it is possible to unify SiteConnectionStatus
// and SiteIdentityStatus.
//
// Status of a connection to a website.
enum SiteConnectionStatus {
SITE_CONNECTION_STATUS_UNKNOWN = 0, // No status available.
SITE_CONNECTION_STATUS_ENCRYPTED, // Connection is encrypted.
SITE_CONNECTION_STATUS_INSECURE_PASSIVE_SUBRESOURCE, // Non-secure passive
// content.
SITE_CONNECTION_STATUS_INSECURE_FORM_ACTION, // Non-secure form
// target.
SITE_CONNECTION_STATUS_INSECURE_ACTIVE_SUBRESOURCE, // Non-secure active
// content.
SITE_CONNECTION_STATUS_UNENCRYPTED, // Connection is not encrypted.
SITE_CONNECTION_STATUS_ENCRYPTED_ERROR, // Connection error occurred.
SITE_CONNECTION_STATUS_INTERNAL_PAGE, // Internal site.
};
// Validation status of a website's identity.
enum SiteIdentityStatus {
// No status about the website's identity available.
SITE_IDENTITY_STATUS_UNKNOWN = 0,
// The website provided a valid certificate.
SITE_IDENTITY_STATUS_CERT,
// The website provided a valid EV certificate.
SITE_IDENTITY_STATUS_EV_CERT,
// The website provided a valid certificate but no revocation check could be
// performed.
SITE_IDENTITY_STATUS_CERT_REVOCATION_UNKNOWN,
// Site identity could not be verified because the site did not provide a
// certificate. This is the expected state for HTTP connections.
SITE_IDENTITY_STATUS_NO_CERT,
// An error occured while verifying the site identity.
SITE_IDENTITY_STATUS_ERROR,
// The site is a trusted internal chrome page.
SITE_IDENTITY_STATUS_INTERNAL_PAGE,
// The profile has accessed data using an administrator-provided
// certificate, so the administrator might be able to intercept data.
SITE_IDENTITY_STATUS_ADMIN_PROVIDED_CERT,
// The website provided a valid certificate, but the certificate or chain
// is using a deprecated signature algorithm.
SITE_IDENTITY_STATUS_DEPRECATED_SIGNATURE_ALGORITHM,
// The website has been flagged by Safe Browsing as dangerous for
// containing malware, social engineering, unwanted software, or password
// reuse on a low reputation site.
SITE_IDENTITY_STATUS_MALWARE,
SITE_IDENTITY_STATUS_SOCIAL_ENGINEERING,
SITE_IDENTITY_STATUS_UNWANTED_SOFTWARE,
SITE_IDENTITY_STATUS_PASSWORD_REUSE,
};
// Events for UMA. Do not reorder or change! Exposed in header so enum is
// accessible from test.
enum SSLCertificateDecisionsDidRevoke {
USER_CERT_DECISIONS_NOT_REVOKED = 0,
USER_CERT_DECISIONS_REVOKED = 1,
END_OF_SSL_CERTIFICATE_DECISIONS_DID_REVOKE_ENUM
};
// UMA statistics for PageInfo. Do not reorder or remove existing
// fields. A Java counterpart will be generated for this enum.
// GENERATED_JAVA_ENUM_PACKAGE: org.chromium.chrome.browser.page_info
enum PageInfoAction {
PAGE_INFO_OPENED = 0,
// No longer used; indicated actions for the old version of Page Info that
// had a "Permissions" tab and a "Connection" tab.
// PAGE_INFO_PERMISSIONS_TAB_SELECTED = 1,
// PAGE_INFO_CONNECTION_TAB_SELECTED = 2,
// PAGE_INFO_CONNECTION_TAB_SHOWN_IMMEDIATELY = 3,
PAGE_INFO_COOKIES_DIALOG_OPENED = 4,
PAGE_INFO_CHANGED_PERMISSION = 5,
PAGE_INFO_CERTIFICATE_DIALOG_OPENED = 6,
// No longer used; indicated a UI viewer for SCTs.
// PAGE_INFO_TRANSPARENCY_VIEWER_OPENED = 7,
PAGE_INFO_CONNECTION_HELP_OPENED = 8,
PAGE_INFO_SITE_SETTINGS_OPENED = 9,
PAGE_INFO_SECURITY_DETAILS_OPENED = 10,
PAGE_INFO_COUNT
};
struct ChooserUIInfo {
ContentSettingsType content_settings_type;
ChooserContextBase* (*get_context)(Profile*);
int label_string_id;
int secondary_label_string_id;
int delete_tooltip_string_id;
const char* ui_name_key;
};
// Creates a PageInfo for the passed |url| using the given |ssl| status
// object to determine the status of the site's connection. The
// |PageInfo| takes ownership of the |ui|.
PageInfo(PageInfoUI* ui,
Profile* profile,
TabSpecificContentSettings* tab_specific_content_settings,
content::WebContents* web_contents,
const GURL& url,
const security_state::SecurityInfo& security_info);
~PageInfo() override;
void RecordPageInfoAction(PageInfoAction action);
// This method is called when ever a permission setting is changed.
void OnSitePermissionChanged(ContentSettingsType type, ContentSetting value);
// This method is called whenever access to an object is revoked.
void OnSiteChosenObjectDeleted(const ChooserUIInfo& ui_info,
const base::DictionaryValue& object);
// This method is called by the UI when the UI is closing.
void OnUIClosing();
// This method is called when the revoke SSL error bypass button is pressed.
void OnRevokeSSLErrorBypassButtonPressed();
// Handles opening the link to show more site settings and records the event.
void OpenSiteSettingsView();
// This method is called when the user pressed "Change password" button.
void OnChangePasswordButtonPressed(content::WebContents* web_contents);
// This method is called when the user pressed "Mark as legitimate" button.
void OnWhitelistPasswordReuseButtonPressed(
content::WebContents* web_contents);
// Accessors.
SiteConnectionStatus site_connection_status() const {
return site_connection_status_;
}
const GURL& site_url() const { return site_url_; }
SiteIdentityStatus site_identity_status() const {
return site_identity_status_;
}
base::string16 organization_name() const { return organization_name_; }
// SiteDataObserver implementation.
void OnSiteDataAccessed() override;
private:
FRIEND_TEST_ALL_PREFIXES(PageInfoTest,
NonFactoryDefaultAndRecentlyChangedPermissionsShown);
friend class PageInfoBubbleViewBrowserTest;
// Initializes the |PageInfo|.
void Init(const GURL& url, const security_state::SecurityInfo& security_info);
// Sets (presents) the information about the site's permissions in the |ui_|.
void PresentSitePermissions();
// Sets (presents) the information about the site's data in the |ui_|.
void PresentSiteData();
// Sets (presents) the information about the site's identity and connection
// in the |ui_|.
void PresentSiteIdentity();
// Helper function to get the site identification status and details by
// malicious content status.
void GetSiteIdentityByMaliciousContentStatus(
security_state::MaliciousContentStatus malicious_content_status,
PageInfo::SiteIdentityStatus* status,
base::string16* details);
// Retrieves all the permissions that are shown in Page Info.
// Exposed for testing.
static std::vector<ContentSettingsType> GetAllPermissionsForTesting();
// The page info UI displays information and controls for site-
// specific data (local stored objects like cookies), site-specific
// permissions (location, pop-up, plugin, etc. permissions) and site-specific
// information (identity, connection status, etc.).
PageInfoUI* ui_;
// The flag that controls whether an infobar is displayed after the website
// settings UI is closed or not.
bool show_info_bar_;
// The Omnibox URL of the website for which to display site permissions and
// site information.
GURL site_url_;
// Status of the website's identity verification check.
SiteIdentityStatus site_identity_status_;
// For secure connection |certificate_| is set to the server certificate.
scoped_refptr<net::X509Certificate> certificate_;
// Status of the connection to the website.
SiteConnectionStatus site_connection_status_;
// TODO(markusheintz): Move the creation of all the base::string16 typed UI
// strings below to the corresponding UI code, in order to prevent
// unnecessary UTF-8 string conversions.
// Details about the website's identity. If the website's identity has been
// verified then |site_identity_details_| contains who verified the identity.
// This string will be displayed in the UI.
base::string16 site_identity_details_;
// Set when the user has explicitly bypassed an SSL error for this host or
// explicitly denied it (the latter of which is not currently possible in the
// Chrome UI). When |show_ssl_decision_revoke_button| is true, the connection
// area of the page info will include an option for the user to revoke their
// decision to bypass the SSL error for this host.
bool show_ssl_decision_revoke_button_;
// Details about the connection to the website. In case of an encrypted
// connection |site_connection_details_| contains encryption details, like
// encryption strength and ssl protocol version. This string will be
// displayed in the UI.
base::string16 site_connection_details_;
// For websites that provided an EV certificate |orgainization_name_|
// contains the organization name of the certificate. In all other cases
// |organization_name| is an empty string. This string will be displayed in
// the UI.
base::string16 organization_name_;
// The |HostContentSettingsMap| is the service that provides and manages
// content settings (aka. site permissions).
HostContentSettingsMap* content_settings_;
// Service for managing SSL error page bypasses. Used to revoke bypass
// decisions by users.
ChromeSSLHostStateDelegate* chrome_ssl_host_state_delegate_;
bool did_revoke_user_ssl_decisions_;
Profile* profile_;
security_state::SecurityLevel security_level_;
#if defined(SAFE_BROWSING_DB_LOCAL)
// Used to handle changing password, and whitelisting site.
safe_browsing::ChromePasswordProtectionService* password_protection_service_;
#endif
// Set when the user ignored the password reuse modal warning dialog. When
// |show_change_password_buttons_| is true, the page identity area of the page
// info will include buttons to change corresponding password, and to
// whitelist current site.
bool show_change_password_buttons_;
DISALLOW_COPY_AND_ASSIGN(PageInfo);
};
#endif // CHROME_BROWSER_UI_PAGE_INFO_PAGE_INFO_H_