Google Git
Sign in
chromium / chromium / src / refs/tags/111.0.5508.1 / . / chrome / browser / extensions / standard_management_policy_provider_unittest.cc
blob: 5716367317807e97c7205079dadd57793556185c [file] [log] [blame]
// Copyright 2012 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "chrome/browser/extensions/standard_management_policy_provider.h"
#include <memory>
#include "base/strings/string_number_conversions.h"
#include "base/values.h"
#include "chrome/browser/extensions/blocklist.h"
#include "chrome/browser/extensions/extension_management.h"
#include "chrome/browser/extensions/extension_management_internal.h"
#include "chrome/common/pref_names.h"
#include "chrome/test/base/testing_profile.h"
#include "components/sync_preferences/testing_pref_service_syncable.h"
#include "content/public/test/browser_task_environment.h"
#include "extensions/browser/pref_names.h"
#include "extensions/common/constants.h"
#include "extensions/common/extension_builder.h"
#include "extensions/common/manifest.h"
#include "extensions/common/manifest_constants.h"
#include "testing/gtest/include/gtest/gtest.h"
using extensions::mojom::ManifestLocation;
namespace extensions {
class StandardManagementPolicyProviderTest : public testing::Test {
public:
StandardManagementPolicyProviderTest()
: settings_(std::make_unique<ExtensionManagement>(&profile_)),
provider_(settings_.get()) {}
protected:
scoped_refptr<const Extension> CreateExtension(ManifestLocation location) {
return ExtensionBuilder("test").SetLocation(location).Build();
}
content::BrowserTaskEnvironment task_environment_;
TestingProfile profile_;
std::unique_ptr<ExtensionManagement> settings_;
StandardManagementPolicyProvider provider_;
};
// Tests the behavior of the ManagementPolicy provider methods for an
// extension required by policy.
TEST_F(StandardManagementPolicyProviderTest, RequiredExtension) {
auto extension = CreateExtension(ManifestLocation::kExternalPolicyDownload);
std::u16string error16;
EXPECT_TRUE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_EQ(std::u16string(), error16);
// We won't check the exact wording of the error, but it should say
// something.
EXPECT_FALSE(provider_.UserMayModifySettings(extension.get(), &error16));
EXPECT_NE(std::u16string(), error16);
EXPECT_TRUE(provider_.MustRemainEnabled(extension.get(), &error16));
EXPECT_NE(std::u16string(), error16);
// Component/policy extensions can modify and disable policy extensions, while
// all others cannot.
auto component = CreateExtension(ManifestLocation::kComponent);
auto policy = extension;
auto policy2 = CreateExtension(ManifestLocation::kExternalPolicy);
auto internal = CreateExtension(ManifestLocation::kInternal);
EXPECT_TRUE(provider_.ExtensionMayModifySettings(component.get(),
policy.get(), nullptr));
EXPECT_TRUE(provider_.ExtensionMayModifySettings(policy2.get(), policy.get(),
nullptr));
EXPECT_FALSE(provider_.ExtensionMayModifySettings(internal.get(),
policy.get(), nullptr));
// The Webstore hosted app is an exception, in that it is a component
// extension, but it should not be able to modify policy required extensions.
// Note: We add to the manifest JSON to build this as a hosted app.
// Regression test for crbug.com/1363793
constexpr char kHostedApp[] = R"(
"app": {
"launch": {
"web_url": "https://example.com"
},
"urls": [
"https://example.com"
]
})";
auto webstore = ExtensionBuilder("webstore hosted app")
.AddJSON(kHostedApp)
.SetLocation(ManifestLocation::kComponent)
.SetID(extensions::kWebStoreAppId)
.Build();
EXPECT_FALSE(provider_.ExtensionMayModifySettings(webstore.get(),
policy.get(), nullptr));
}
// Tests the behavior of the ManagementPolicy provider methods for a component
// extension.
TEST_F(StandardManagementPolicyProviderTest, ComponentExtension) {
auto extension = CreateExtension(ManifestLocation::kComponent);
std::u16string error16;
EXPECT_TRUE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_EQ(std::u16string(), error16);
EXPECT_FALSE(provider_.UserMayModifySettings(extension.get(), &error16));
EXPECT_NE(std::u16string(), error16);
EXPECT_TRUE(provider_.MustRemainEnabled(extension.get(), &error16));
EXPECT_NE(std::u16string(), error16);
// No extension can modify or disable component extensions.
auto component = extension;
auto component2 = CreateExtension(ManifestLocation::kComponent);
auto policy = CreateExtension(ManifestLocation::kExternalPolicy);
auto internal = CreateExtension(ManifestLocation::kInternal);
EXPECT_FALSE(provider_.ExtensionMayModifySettings(component2.get(),
component.get(), nullptr));
EXPECT_FALSE(provider_.ExtensionMayModifySettings(policy.get(),
component.get(), nullptr));
EXPECT_FALSE(provider_.ExtensionMayModifySettings(internal.get(),
component.get(), nullptr));
}
// Tests the behavior of the ManagementPolicy provider methods for a regular
// extension.
TEST_F(StandardManagementPolicyProviderTest, NotRequiredExtension) {
auto extension = CreateExtension(ManifestLocation::kInternal);
std::u16string error16;
EXPECT_TRUE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_EQ(std::u16string(), error16);
EXPECT_TRUE(provider_.UserMayModifySettings(extension.get(), &error16));
EXPECT_EQ(std::u16string(), error16);
EXPECT_FALSE(provider_.MustRemainEnabled(extension.get(), &error16));
EXPECT_EQ(std::u16string(), error16);
// All extension types can modify or disable internal extensions.
auto component = CreateExtension(ManifestLocation::kComponent);
auto policy = CreateExtension(ManifestLocation::kExternalPolicy);
auto internal = extension;
auto external_pref = CreateExtension(ManifestLocation::kExternalPref);
EXPECT_TRUE(provider_.ExtensionMayModifySettings(component.get(),
internal.get(), nullptr));
EXPECT_TRUE(provider_.ExtensionMayModifySettings(policy.get(), internal.get(),
nullptr));
EXPECT_TRUE(provider_.ExtensionMayModifySettings(external_pref.get(),
internal.get(), nullptr));
}
// Tests the behavior of the ManagementPolicy provider methods for a theme
// extension with and without a set policy theme.
TEST_F(StandardManagementPolicyProviderTest, ThemeExtension) {
auto extension = ExtensionBuilder("testTheme")
.SetLocation(ManifestLocation::kInternal)
.SetManifestKey("theme", base::Value::Dict())
.Build();
std::u16string error16;
EXPECT_EQ(extension->GetType(), Manifest::TYPE_THEME);
EXPECT_TRUE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_EQ(std::u16string(), error16);
// Setting policy theme prevents users from loading an extension theme.
profile_.GetTestingPrefService()->SetManagedPref(
prefs::kPolicyThemeColor, std::make_unique<base::Value>(100));
EXPECT_FALSE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_NE(std::u16string(), error16);
// Unsetting policy theme allows users to load an extension theme.
profile_.GetTestingPrefService()->RemoveManagedPref(prefs::kPolicyThemeColor);
EXPECT_TRUE(provider_.UserMayLoad(extension.get(), &error16));
}
// Tests the behavior of the ManagementPolicy provider methods for an extension
// which manifest version is controlled by policy.
TEST_F(StandardManagementPolicyProviderTest, ManifestVersion) {
auto extension = ExtensionBuilder("testManifestVersion")
.SetLocation(ManifestLocation::kExternalPolicyDownload)
.SetManifestVersion(2)
.Build();
std::u16string error16;
EXPECT_TRUE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_TRUE(error16.empty());
profile_.GetTestingPrefService()->SetManagedPref(
pref_names::kManifestV2Availability,
std::make_unique<base::Value>(static_cast<int>(
internal::GlobalSettings::ManifestV2Setting::kDisabled)));
EXPECT_FALSE(provider_.UserMayLoad(extension.get(), &error16));
EXPECT_EQ(
u"The administrator of this machine requires testManifestVersion "
"to have a minimum manifest version of 3.",
error16);
}
} // namespace extensions