[Password Autofill] Trigger onChange events in JavaScript when autofilling passwords.

chrome/renderer/autofill/password_autofill_agent_browsertest.cc

 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "base/strings/string_util.h"
 #include "base/strings/utf_string_conversions.h"
 #include "chrome/test/base/chrome_render_view_test.h"
 #include "components/autofill/content/common/autofill_messages.h"
 #include "components/autofill/content/renderer/autofill_agent.h"
 #include "components/autofill/content/renderer/form_autofill_util.h"
@@ skipping 126 matching lines @@
 const char kJavaScriptClick[] =
     "var event = new MouseEvent('click', {"
     "   'view': window,"
     "   'bubbles': true,"
     "   'cancelable': true"
     "});"
     "var form = document.getElementById('myform1');"
     "form.dispatchEvent(event);"
     "console.log('clicked!');";
 
+const char kOnChangeDetectionScript[] =
+    "<script>"
+    "  usernameOnchangeCalled = false;"
+    "  passwordOnchangeCalled = false;"
+    "  document.getElementById('username').onchange = function() {"
+    "    usernameOnchangeCalled = true;"
+    "  };"
+    "  document.getElementById('password').onchange = function() {"
+    "    passwordOnchangeCalled = true;"
+    "  };"
+    "</script>";
+
 }  // namespace
 
 namespace autofill {
 
 class PasswordAutofillAgentTest : public ChromeRenderViewTest {
  public:
   PasswordAutofillAgentTest() {
   }
 
   // Simulates the fill password form message being sent to the renderer.
@@ skipping 36 matching lines @@
     fill_data_.additional_logins[username3_] = password3;
 
     UsernamesCollectionKey key;
     key.username = username3_;
     key.password = password3_;
     key.realm = "google.com";
     fill_data_.other_possible_usernames[key].push_back(alternate_username3_);
 
     // We need to set the origin so it matches the frame URL and the action so
     // it matches the form action, otherwise we won't autocomplete.
-    std::string origin("data:text/html;charset=utf-8,");
-    origin += kFormHTML;
-    fill_data_.basic_data.origin = GURL(origin);
+    UpdateOriginForHTML(kFormHTML);
     fill_data_.basic_data.action = GURL("http://www.bidule.com");
 
     LoadHTML(kFormHTML);
 
-    // Now retrieves the input elements so the test can access them.
+    // Now retrieve the input elements so the test can access them.
+    UpdateUsernameAndPasswordElements();
+  }
+
+  virtual void TearDown() {
+    username_element_.reset();
+    password_element_.reset();
+    ChromeRenderViewTest::TearDown();
+  }
+
+  void UpdateOriginForHTML(const std::string& html) {
+    std::string origin = "data:text/html;charset=utf-8," + html;
+    fill_data_.basic_data.origin = GURL(origin);
+  }
+
+  void UpdateUsernameAndPasswordElements() {
     WebDocument document = GetMainFrame()->document();
     WebElement element =
         document.getElementById(WebString::fromUTF8(kUsernameName));
     ASSERT_FALSE(element.isNull());
     username_element_ = element.to<blink::WebInputElement>();
     element = document.getElementById(WebString::fromUTF8(kPasswordName));
     ASSERT_FALSE(element.isNull());
     password_element_ = element.to<blink::WebInputElement>();
   }
 
-  virtual void TearDown() {
-    username_element_.reset();
-    password_element_.reset();
-    ChromeRenderViewTest::TearDown();
-  }
-
   void ClearUsernameAndPasswordFields() {
     username_element_.setValue("");
     username_element_.setAutofilled(false);
     password_element_.setValue("");
     password_element_.setAutofilled(false);
   }
 
   void SimulateUsernameChangeForElement(const std::string& username,
                                         bool move_caret_to_end,
                                         WebFrame* input_frame,
@@ skipping 158 matching lines @@
   WebDocument document = GetMainFrame()->document();
   WebElement element =
       document.getElementById(WebString::fromUTF8(kUsernameName));
   ASSERT_FALSE(element.isNull());
   username_element_ = element.to<blink::WebInputElement>();
   element = document.getElementById(WebString::fromUTF8(kPasswordName));
   ASSERT_FALSE(element.isNull());
   password_element_ = element.to<blink::WebInputElement>();
 
   // Set the expected form origin and action URLs.
-  std::string origin("data:text/html;charset=utf-8,");
-  origin += kEmptyActionFormHTML;
-  fill_data_.basic_data.origin = GURL(origin);
-  fill_data_.basic_data.action = GURL(origin);
+  UpdateOriginForHTML(kEmptyActionFormHTML);
+  fill_data_.basic_data.action = fill_data_.basic_data.origin;
 
   // Simulate the browser sending back the login info, it triggers the
   // autocomplete.
   SimulateOnFillPasswordForm(fill_data_);
 
   // The username and password should have been autocompleted.
   CheckTextFieldsState(kAliceUsername, true, kAlicePassword, true);
 }
 
 // Tests that if a password is marked as readonly, neither field is autofilled
@@ skipping 81 matching lines @@
   WebDocument document = GetMainFrame()->document();
   WebElement element =
       document.getElementById(WebString::fromUTF8(kUsernameName));
   ASSERT_FALSE(element.isNull());
   username_element_ = element.to<blink::WebInputElement>();
   element = document.getElementById(WebString::fromUTF8(kPasswordName));
   ASSERT_FALSE(element.isNull());
   password_element_ = element.to<blink::WebInputElement>();
 
   // Set the expected form origin URL.
-  std::string origin("data:text/html;charset=utf-8,");
-  origin += kTextFieldPasswordFormHTML;
-  fill_data_.basic_data.origin = GURL(origin);
+  UpdateOriginForHTML(kTextFieldPasswordFormHTML);
 
   SimulateOnFillPasswordForm(fill_data_);
 
   // Fields should still be empty.
   CheckTextFieldsState(std::string(), false, std::string(), false);
 }
 
 TEST_F(PasswordAutofillAgentTest, NoAutocompleteForPasswordFieldUsernames) {
   const char kPasswordFieldUsernameFormHTML[] =
       "<FORM name='LoginTestForm' action='http://www.bidule.com'>"
       "  <INPUT type='password' id='username'/>"
       "  <INPUT type='password' id='password'/>"
       "  <INPUT type='submit' value='Login'/>"
       "</FORM>";
   LoadHTML(kPasswordFieldUsernameFormHTML);
 
   // Retrieve the input elements so the test can access them.
   WebDocument document = GetMainFrame()->document();
   WebElement element =
       document.getElementById(WebString::fromUTF8(kUsernameName));
   ASSERT_FALSE(element.isNull());
   username_element_ = element.to<blink::WebInputElement>();
   element = document.getElementById(WebString::fromUTF8(kPasswordName));
   ASSERT_FALSE(element.isNull());
   password_element_ = element.to<blink::WebInputElement>();
 
   // Set the expected form origin URL.
-  std::string origin("data:text/html;charset=utf-8,");
-  origin += kPasswordFieldUsernameFormHTML;
-  fill_data_.basic_data.origin = GURL(origin);
+  UpdateOriginForHTML(kPasswordFieldUsernameFormHTML);
 
   SimulateOnFillPasswordForm(fill_data_);
 
   // Fields should still be empty.
   CheckTextFieldsState(std::string(), false, std::string(), false);
 }
 
 // Tests that having a matching username does not preclude the autocomplete.
 TEST_F(PasswordAutofillAgentTest, InitialAutocompleteForMatchingFilledField) {
   username_element_.setValue(WebString::fromUTF8(kAliceUsername));
@@ skipping 252 matching lines @@
 TEST_F(PasswordAutofillAgentTest, GestureRequiredTest) {
   // Trigger the initial autocomplete.
   SimulateOnFillPasswordForm(fill_data_);
 
   // The username and password should have been autocompleted.
   CheckTextFieldsState(kAliceUsername, true, kAlicePassword, true);
 
   // However, it should only have completed with the suggested value, as tested
   // above, and it should not have completed into the DOM accessible value for
   // the password field.
-  CheckTextFieldsDOMState(kAliceUsername, true, "", true);
+  CheckTextFieldsDOMState(kAliceUsername, true, std::string(), true);
 
   // Simulate a user click so that the password field's real value is filled.
   SimulateElementClick(kUsernameName);
   CheckTextFieldsDOMState(kAliceUsername, true, kAlicePassword, true);
 }
 
 // Verfies that a DOM-activated UI event will not cause an autofill.
 TEST_F(PasswordAutofillAgentTest, NoDOMActivationTest) {
   // Trigger the initial autocomplete.
   SimulateOnFillPasswordForm(fill_data_);
@@ skipping 35 matching lines @@
 
 // Regression test for http://crbug.com/326679
 TEST_F(PasswordAutofillAgentTest, SelectUsernameWithPasswordAutofillOff) {
   // Simulate the browser sending back the login info.
   SimulateOnFillPasswordForm(fill_data_);
 
   // Set the main password element to autocomplete='off'
   password_element_.setAttribute(WebString::fromUTF8("autocomplete"),
                                  WebString::fromUTF8("off"));
 
-  // Simulate the user changing the username to some known username.
+ // Simulate the user changing the username to some known username.
   SimulateUsernameChange(kAliceUsername, true);
 
   ExpectNoSuggestionsPopup();
 }
 
 // Regression test for http://crbug.com/326679
 TEST_F(PasswordAutofillAgentTest,
        SelectUnknownUsernameWithPasswordAutofillOff) {
   // Simulate the browser sending back the login info.
   SimulateOnFillPasswordForm(fill_data_);
 
   // Set the main password element to autocomplete='off'
   password_element_.setAttribute(WebString::fromUTF8("autocomplete"),
                                  WebString::fromUTF8("off"));
 
   // Simulate the user changing the username to some unknown username.
   SimulateUsernameChange("foo", true);
 
   ExpectNoSuggestionsPopup();
 }
 
+// Verifies that password autofill triggers onChange events in JavaScript for
+// forms that are filled on page load.
+TEST_F(PasswordAutofillAgentTest,
+       PasswordAutofillTriggersOnChangeEventsOnLoad) {
+  std::string html = std::string(kFormHTML) + kOnChangeDetectionScript;
+  LoadHTML(html.c_str());
+  UpdateOriginForHTML(html);
+  UpdateUsernameAndPasswordElements();
+
+  // Simulate the browser sending back the login info, it triggers the
+  // autocomplete.
+  SimulateOnFillPasswordForm(fill_data_);
+
+  // The username and password should have been autocompleted...
+  CheckTextFieldsState(kAliceUsername, true, kAlicePassword, true);
+  // ... but since there hasn't been a user gesture yet, the autocompleted
+  // password should only be visible to the user.
+  CheckTextFieldsDOMState(kAliceUsername, true, std::string(), true);
+
+  // A JavaScript onChange event should have been triggered for the username,
+  // but not yet for the password.
+  int username_onchange_called = -1;
+  int password_onchange_called = -1;
+  ASSERT_TRUE(
+      ExecuteJavaScriptAndReturnIntValue(
+          ASCIIToUTF16("usernameOnchangeCalled ? 1 : 0"),
+          &username_onchange_called));
+  EXPECT_EQ(1, username_onchange_called);
+  ASSERT_TRUE(
+      ExecuteJavaScriptAndReturnIntValue(
+          ASCIIToUTF16("passwordOnchangeCalled ? 1 : 0"),
+          &password_onchange_called));
+  // TODO(isherman): Re-enable this check once http://crbug.com/333144 is fixed.
+  // EXPECT_EQ(0, password_onchange_called);
+
+  // Simulate a user click so that the password field's real value is filled.
+  SimulateElementClick(kUsernameName);
+  CheckTextFieldsDOMState(kAliceUsername, true, kAlicePassword, true);
+
+  // Now, a JavaScript onChange event should have been triggered for the
+  // password as well.
+  ASSERT_TRUE(
+      ExecuteJavaScriptAndReturnIntValue(
+          ASCIIToUTF16("passwordOnchangeCalled ? 1 : 0"),
+          &password_onchange_called));
+  EXPECT_EQ(1, password_onchange_called);
+}
+
+// Verifies that password autofill triggers onChange events in JavaScript for
+// forms that are filled after page load.
+TEST_F(PasswordAutofillAgentTest,
+       PasswordAutofillTriggersOnChangeEventsWaitForUsername) {
+  std::string html = std::string(kFormHTML) + kOnChangeDetectionScript;
+  LoadHTML(html.c_str());
+  UpdateOriginForHTML(html);
+  UpdateUsernameAndPasswordElements();
+
+  // Simulate the browser sending back the login info, it triggers the
+  // autocomplete.
+  fill_data_.wait_for_username = true;
+  SimulateOnFillPasswordForm(fill_data_);
+
+  // The username and password should not yet have been autocompleted.
+  CheckTextFieldsState(std::string(), false, std::string(), false);
+
+  // Simulate a click just to force a user gesture, since the username value is
+  // set directly.
+  SimulateElementClick(kUsernameName);
+
+  // Simulate the user entering her username.
+  username_element_.setValue(ASCIIToUTF16(kAliceUsername), true);
+  autofill_agent_->textFieldDidEndEditing(username_element_);
+
+  // The username and password should now have been autocompleted.
+  CheckTextFieldsDOMState(kAliceUsername, true, kAlicePassword, true);
+
+  // JavaScript onChange events should have been triggered both for the username
+  // and for the password.
+  int username_onchange_called = -1;
+  int password_onchange_called = -1;
+  ASSERT_TRUE(
+      ExecuteJavaScriptAndReturnIntValue(
+          ASCIIToUTF16("usernameOnchangeCalled ? 1 : 0"),
+          &username_onchange_called));
+  EXPECT_EQ(1, username_onchange_called);
+  ASSERT_TRUE(
+      ExecuteJavaScriptAndReturnIntValue(
+          ASCIIToUTF16("passwordOnchangeCalled ? 1 : 0"),
+          &password_onchange_called));
+  EXPECT_EQ(1, password_onchange_called);
+}
+
 }  // namespace autofill