Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(361)

Issue 1181293003: Expand SecurityStyleChanged interfaces to include explanations (Closed)

Created:
5 years, 6 months ago by estark
Modified:
5 years, 6 months ago
CC:
lgarron, chromium-reviews, creis+watch_chromium.org, darin-cc_chromium.org, devtools-reviews_chromium.org, nasko+codewatch_chromium.org, yurys
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

Expand SecurityStyleChanged interfaces to include explanations As the next step in building the devtools security panel, we need to plumb through human-readable strings explaining why the lock icon is red (broken) or yellow (warning). This CL expands the WebContentsObserver and WebContentsDelegate methods that ferry lock icon information to devtools to include these human-readable strings. BUG=484409 Committed: https://crrev.com/5ea80e54daf27b155d9ba2c6e7f9a3f7b4d5e803 Cr-Commit-Position: refs/heads/master@{#335306}

Patch Set 1 #

Patch Set 2 : fix a TODO to make it more accurate #

Patch Set 3 : change API to take explanation object; populate it in connection_security #

Patch Set 4 : add comments #

Patch Set 5 : comments, style tweaks #

Total comments: 36

Patch Set 6 : pkasting comments #

Total comments: 6

Patch Set 7 : pkasting comments #

Total comments: 2

Patch Set 8 : rsleevi comment #

Total comments: 4

Patch Set 9 : creis comments #

Patch Set 10 : remove unnecessary #includes #

Patch Set 11 : rebase #

Total comments: 5

Patch Set 12 : tweak mixed content strings #

Total comments: 4

Patch Set 13 : rebase #

Patch Set 14 : tweak mixed content string #

Patch Set 15 : creis comments #

Patch Set 16 : add CONTENT_EXPORT #

Unified diffs Side-by-side diffs Delta from patch set Stats (+346 lines, -52 lines) Patch
M chrome/app/generated_resources.grd View 1 2 3 4 5 6 7 8 9 10 11 12 13 1 chunk +33 lines, -0 lines 0 comments Download
M chrome/browser/ssl/connection_security.h View 1 2 3 4 5 3 chunks +42 lines, -3 lines 0 comments Download
M chrome/browser/ssl/connection_security.cc View 1 2 3 4 5 6 7 8 9 10 11 12 3 chunks +74 lines, -28 lines 0 comments Download
M chrome/browser/ui/browser.h View 1 2 3 4 5 1 chunk +2 lines, -1 line 0 comments Download
M chrome/browser/ui/browser.cc View 1 2 3 4 5 6 7 8 2 chunks +56 lines, -2 lines 0 comments Download
M chrome/browser/ui/browser_browsertest.cc View 1 2 3 4 5 6 7 8 6 chunks +35 lines, -2 lines 0 comments Download
M content/browser/devtools/protocol/security_handler.h View 1 2 3 4 5 1 chunk +3 lines, -1 line 0 comments Download
M content/browser/devtools/protocol/security_handler.cc View 1 2 3 4 5 2 chunks +3 lines, -3 lines 0 comments Download
M content/browser/web_contents/web_contents_impl.cc View 1 2 3 4 5 6 7 8 9 10 2 chunks +7 lines, -3 lines 0 comments Download
M content/content_browser.gypi View 1 2 3 4 5 6 7 8 9 10 11 12 13 14 1 chunk +3 lines, -0 lines 0 comments Download
A content/public/browser/security_style_explanation.h View 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 1 chunk +32 lines, -0 lines 0 comments Download
A content/public/browser/security_style_explanations.h View 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 1 chunk +31 lines, -0 lines 0 comments Download
A + content/public/browser/security_style_explanations.cc View 1 2 3 4 5 6 7 8 1 chunk +6 lines, -4 lines 0 comments Download
M content/public/browser/web_contents_delegate.h View 1 2 3 4 5 6 7 8 9 10 11 12 13 14 2 chunks +8 lines, -3 lines 0 comments Download
M content/public/browser/web_contents_delegate.cc View 1 2 3 4 5 6 7 8 2 chunks +4 lines, -1 line 0 comments Download
M content/public/browser/web_contents_observer.h View 1 2 3 4 5 6 7 8 9 10 11 12 13 14 2 chunks +7 lines, -1 line 0 comments Download

Messages

Total messages: 64 (12 generated)
estark
This is the next step in our devtools security panel plumbing Master Plan.* The eventual ...
5 years, 6 months ago (2015-06-12 23:00:15 UTC) #2
lgarron
I like the use of two vectors for the two security levels. However, I would ...
5 years, 6 months ago (2015-06-13 00:00:00 UTC) #4
estark
On 2015/06/13 00:00:00, lgarron wrote: > I like the use of two vectors for the ...
5 years, 6 months ago (2015-06-14 22:59:52 UTC) #6
Peter Kasting
* It's not made clear anywhere why the added params are vectors of strings, rather ...
5 years, 6 months ago (2015-06-15 20:23:43 UTC) #7
lgarron
On 2015/06/15 at 20:23:43, pkasting wrote: > * It's not made clear anywhere why the ...
5 years, 6 months ago (2015-06-15 20:44:54 UTC) #8
estark
On 2015/06/15 20:23:43, Peter Kasting wrote: > * It's not made clear anywhere why the ...
5 years, 6 months ago (2015-06-16 02:09:36 UTC) #9
Peter Kasting
This makes a lot more sense than the first change. https://codereview.chromium.org/1181293003/diff/70001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd (right): https://codereview.chromium.org/1181293003/diff/70001/chrome/app/generated_resources.grd#newcode15645 ...
5 years, 6 months ago (2015-06-16 06:29:11 UTC) #10
estark
https://codereview.chromium.org/1181293003/diff/70001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd (right): https://codereview.chromium.org/1181293003/diff/70001/chrome/app/generated_resources.grd#newcode15645 chrome/app/generated_resources.grd:15645: + The certificate for this site expires in 2016, ...
5 years, 6 months ago (2015-06-16 15:32:35 UTC) #11
Peter Kasting
LGTM https://codereview.chromium.org/1181293003/diff/90001/content/public/common/security_style.h File content/public/common/security_style.h (right): https://codereview.chromium.org/1181293003/diff/90001/content/public/common/security_style.h#newcode53 content/public/common/security_style.h:53: const std::string& description_input); Nit: Name these |summary| and ...
5 years, 6 months ago (2015-06-16 22:11:31 UTC) #12
estark
Thanks pkasting. creis: could you please look at the rest of //content? pfeldman: could you ...
5 years, 6 months ago (2015-06-16 23:42:20 UTC) #14
Ryan Sleevi
c/b/ssl LGTM % nit https://codereview.chromium.org/1181293003/diff/110001/chrome/browser/ssl/connection_security.cc File chrome/browser/ssl/connection_security.cc (right): https://codereview.chromium.org/1181293003/diff/110001/chrome/browser/ssl/connection_security.cc#newcode85 chrome/browser/ssl/connection_security.cc:85: if (cert && (ssl.cert_status & ...
5 years, 6 months ago (2015-06-16 23:58:54 UTC) #15
estark
https://codereview.chromium.org/1181293003/diff/110001/chrome/browser/ssl/connection_security.cc File chrome/browser/ssl/connection_security.cc (right): https://codereview.chromium.org/1181293003/diff/110001/chrome/browser/ssl/connection_security.cc#newcode85 chrome/browser/ssl/connection_security.cc:85: if (cert && (ssl.cert_status & net::CERT_STATUS_SHA1_SIGNATURE_PRESENT)) { On 2015/06/16 ...
5 years, 6 months ago (2015-06-17 04:38:30 UTC) #17
Charlie Reis
[+jam] I'd like to do a quick sanity check on whether we need the new ...
5 years, 6 months ago (2015-06-17 18:37:40 UTC) #19
estark
On 2015/06/17 18:37:40, Charlie Reis wrote: > [+jam] > > I'd like to do a ...
5 years, 6 months ago (2015-06-17 18:50:15 UTC) #20
estark
On 2015/06/17 18:50:15, estark wrote: > On 2015/06/17 18:37:40, Charlie Reis wrote: > > [+jam] ...
5 years, 6 months ago (2015-06-17 19:00:39 UTC) #21
Charlie Reis
On 2015/06/17 19:00:39, estark wrote: > On 2015/06/17 18:50:15, estark wrote: > > On 2015/06/17 ...
5 years, 6 months ago (2015-06-17 19:38:15 UTC) #22
estark
Cool, thanks creis. https://codereview.chromium.org/1181293003/diff/150001/content/public/browser/web_contents_observer.h File content/public/browser/web_contents_observer.h (right): https://codereview.chromium.org/1181293003/diff/150001/content/public/browser/web_contents_observer.h#newcode181 content/public/browser/web_contents_observer.h:181: // changes. |security_style| is the new ...
5 years, 6 months ago (2015-06-17 20:35:58 UTC) #23
jam
so I just took a closer look at the GetSecurityStyle method which was added in ...
5 years, 6 months ago (2015-06-17 20:45:10 UTC) #24
jam
On 2015/06/17 20:45:10, jam wrote: > so I just took a closer look at the ...
5 years, 6 months ago (2015-06-17 20:46:00 UTC) #25
estark
On 2015/06/17 20:45:10, jam wrote: > so I just took a closer look at the ...
5 years, 6 months ago (2015-06-17 20:46:41 UTC) #26
estark
On 2015/06/17 20:46:41, estark wrote: > On 2015/06/17 20:45:10, jam wrote: > > so I ...
5 years, 6 months ago (2015-06-17 20:50:31 UTC) #27
jam
On 2015/06/17 20:46:41, estark wrote: > On 2015/06/17 20:45:10, jam wrote: > > so I ...
5 years, 6 months ago (2015-06-17 21:03:46 UTC) #28
jam
On 2015/06/17 20:50:31, estark wrote: > On 2015/06/17 20:46:41, estark wrote: > > On 2015/06/17 ...
5 years, 6 months ago (2015-06-17 21:05:39 UTC) #29
estark
On 2015/06/17 21:03:46, jam wrote: > On 2015/06/17 20:46:41, estark wrote: > > On 2015/06/17 ...
5 years, 6 months ago (2015-06-17 21:08:28 UTC) #30
Ryan Sleevi
On 2015/06/17 21:08:28, estark wrote: > I do remember talking about this at one point; ...
5 years, 6 months ago (2015-06-17 21:15:45 UTC) #31
jam
On 2015/06/17 21:08:28, estark wrote: > On 2015/06/17 21:03:46, jam wrote: > > On 2015/06/17 ...
5 years, 6 months ago (2015-06-17 21:16:05 UTC) #32
jam
On 2015/06/17 21:15:45, Ryan Sleevi wrote: > On 2015/06/17 21:08:28, estark wrote: > > I ...
5 years, 6 months ago (2015-06-17 21:36:50 UTC) #33
Ryan Sleevi
On 2015/06/17 21:36:50, jam wrote: > Why is this a chrome-only concept. It's a in ...
5 years, 6 months ago (2015-06-17 21:51:34 UTC) #34
estark
On 2015/06/17 21:36:50, jam wrote: > On 2015/06/17 21:15:45, Ryan Sleevi wrote: > > On ...
5 years, 6 months ago (2015-06-17 21:51:58 UTC) #35
jam
On 2015/06/17 21:51:34, Ryan Sleevi wrote: > On 2015/06/17 21:36:50, jam wrote: > > Why ...
5 years, 6 months ago (2015-06-18 00:36:58 UTC) #36
estark
On 2015/06/18 00:36:58, jam wrote: > On 2015/06/17 21:51:34, Ryan Sleevi wrote: > > On ...
5 years, 6 months ago (2015-06-18 00:55:41 UTC) #37
lgarron
https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd (right): https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd#newcode15667 chrome/app/generated_resources.grd:15667: + Mixed Content estark@: Would you mind changing this ...
5 years, 6 months ago (2015-06-18 01:28:46 UTC) #38
Ryan Sleevi
https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd (right): https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd#newcode15667 chrome/app/generated_resources.grd:15667: + Mixed Content On 2015/06/18 01:28:45, lgarron wrote: > ...
5 years, 6 months ago (2015-06-18 01:34:04 UTC) #39
lgarron
https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd (right): https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd#newcode15667 chrome/app/generated_resources.grd:15667: + Mixed Content On 2015/06/18 at 01:34:03, Ryan Sleevi ...
5 years, 6 months ago (2015-06-18 01:47:25 UTC) #41
jam
On 2015/06/18 00:55:41, estark wrote: > On 2015/06/18 00:36:58, jam wrote: > > On 2015/06/17 ...
5 years, 6 months ago (2015-06-18 14:51:12 UTC) #42
estark
On 2015/06/18 14:51:12, jam wrote: > On 2015/06/18 00:55:41, estark wrote: > > On 2015/06/18 ...
5 years, 6 months ago (2015-06-18 14:56:28 UTC) #43
jam
On 2015/06/18 14:56:28, estark wrote: > On 2015/06/18 14:51:12, jam wrote: > > On 2015/06/18 ...
5 years, 6 months ago (2015-06-18 15:19:41 UTC) #44
estark
On 2015/06/18 15:19:41, jam wrote: > On 2015/06/18 14:56:28, estark wrote: > > On 2015/06/18 ...
5 years, 6 months ago (2015-06-18 15:35:58 UTC) #45
jam
On 2015/06/18 15:35:58, estark wrote: > On 2015/06/18 15:19:41, jam wrote: > > On 2015/06/18 ...
5 years, 6 months ago (2015-06-18 17:34:56 UTC) #46
estark
On 2015/06/18 17:34:56, jam wrote: > On 2015/06/18 15:35:58, estark wrote: > > On 2015/06/18 ...
5 years, 6 months ago (2015-06-18 18:37:50 UTC) #47
estark
creis, pfeldman: would you like to take another look before this lands? https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd ...
5 years, 6 months ago (2015-06-18 18:52:23 UTC) #48
lgarron
https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd File chrome/app/generated_resources.grd (right): https://codereview.chromium.org/1181293003/diff/210001/chrome/app/generated_resources.grd#newcode15667 chrome/app/generated_resources.grd:15667: + Mixed Content On 2015/06/18 at 18:52:23, estark wrote: ...
5 years, 6 months ago (2015-06-18 20:22:46 UTC) #49
Charlie Reis
Thanks, content/ LGTM with nits given the previous discussion. On 2015/06/18 18:37:50, estark wrote: > ...
5 years, 6 months ago (2015-06-18 20:39:52 UTC) #50
estark
On 2015/06/18 20:39:52, Charlie Reis (OOO soon) wrote: > Thanks, content/ LGTM with nits given ...
5 years, 6 months ago (2015-06-18 23:13:09 UTC) #51
estark
https://codereview.chromium.org/1181293003/diff/230001/content/public/browser/web_contents_delegate.h File content/public/browser/web_contents_delegate.h (right): https://codereview.chromium.org/1181293003/diff/230001/content/public/browser/web_contents_delegate.h#newcode41 content/public/browser/web_contents_delegate.h:41: struct SecurityStyleExplanations; On 2015/06/18 20:39:51, Charlie Reis (OOO soon) ...
5 years, 6 months ago (2015-06-18 23:13:26 UTC) #52
pfeldman
lgtm
5 years, 6 months ago (2015-06-19 06:33:34 UTC) #53
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1181293003/290001
5 years, 6 months ago (2015-06-19 14:44:38 UTC) #56
commit-bot: I haz the power
Try jobs failed on following builders: mac_chromium_compile_dbg_ng on tryserver.chromium.mac (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.mac/builders/mac_chromium_compile_dbg_ng/builds/65441)
5 years, 6 months ago (2015-06-19 15:14:47 UTC) #58
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1181293003/310001
5 years, 6 months ago (2015-06-19 17:25:10 UTC) #61
commit-bot: I haz the power
Committed patchset #16 (id:310001)
5 years, 6 months ago (2015-06-19 18:43:22 UTC) #62
commit-bot: I haz the power
Patchset 16 (id:??) landed as https://crrev.com/5ea80e54daf27b155d9ba2c6e7f9a3f7b4d5e803 Cr-Commit-Position: refs/heads/master@{#335306}
5 years, 6 months ago (2015-06-19 18:44:08 UTC) #63
jam
5 years, 6 months ago (2015-06-22 16:04:30 UTC) #64
Message was sent while issue was closed.
On 2015/06/18 23:13:09, estark wrote:
> On 2015/06/18 20:39:52, Charlie Reis (OOO soon) wrote:
> > Thanks, content/ LGTM with nits given the previous discussion.
> > 
> > On 2015/06/18 18:37:50, estark wrote:
> > > On 2015/06/18 17:34:56, jam wrote:
> > > > I see; ok the plumbing is more complicated than I thought.
> > > > 
> > > > lgtm then
> > > > 
> > > > one nit: try to avoid the .cc files in content/public unless you have to
> to
> > > > avoid clang errors.
> > > 
> > > Great, thanks jam.
> > > 
> > > For avoiding the .cc files: are you suggesting that as a general best
> practice
> > > to know about, or specifically that I should move the content/public .cc
> files
> > > in this CL? I thought it's okay to have them because of this content API
> > > guideline: "it's acceptable to put implementation files that hold
> > > constructors/destructors of interfaces/structs which might have member
> > > variables. For structs, this covers initializing member variables."
> > > 
> > > If security_explanation(s).cc don't belong in content/public, would I just
> be
> > > moving the files as-is to content/browser? Or should I make
> > > SecurityExplanation(s) a virtual interface with a
SecurityExplanation(s)Impl
> > in
> > > content/browser? (That approach seems heavy-handed)
> > 
> > I think he meant to inline them in the .h file if you can, unless clang
> > complains that they have to live in a .cc file.  No need to move the .cc
files
> > if they have to exist.
> 
> Ah, ok, thanks for the clarification. I inlined SecurityStyleExplanation but
> wasn't able to with SecurityStyleExplanations.

yep that's what I meant, sorry wasn't clear. (was ooo)

Powered by Google App Engine
This is Rietveld 408576698