signin: force web signin flow initiated visits to accounts.google.com to their own process.

chrome/browser/signin/signin_manager_unittest.cc

Index: chrome/browser/signin/signin_manager_unittest.cc
diff --git a/chrome/browser/signin/signin_manager_unittest.cc b/chrome/browser/signin/signin_manager_unittest.cc
index d6585f914c144923d9ca9d0e91b34f96e4e22815..b646d270d868a96d6f55b64a47a6dd40e2110740 100644
--- a/chrome/browser/signin/signin_manager_unittest.cc
+++ b/chrome/browser/signin/signin_manager_unittest.cc
@@ -18,8 +18,10 @@
 #include "chrome/browser/webdata/web_data_service.h"
 #include "chrome/common/chrome_notification_types.h"
 #include "chrome/common/pref_names.h"
+#include "chrome/common/url_constants.h"
 #include "chrome/test/base/testing_browser_process.h"
 #include "chrome/test/base/testing_profile.h"
+#include "content/public/browser/child_process_security_policy.h"
 #include "content/public/test/test_browser_thread.h"
 #include "google_apis/gaia/gaia_constants.h"
 #include "google_apis/gaia/gaia_urls.h"
@@ -664,3 +666,9 @@ TEST_F(SigninManagerTest, SignOutWhileProhibited) {
   manager_->SignOut();
   EXPECT_FALSE(manager_->GetAuthenticatedUsername().empty());
 }
+
+TEST_F(SigninManagerTest, SigninScheme) {
+  content::ChildProcessSecurityPolicy* policy =
+      content::ChildProcessSecurityPolicy::GetInstance();
+  EXPECT_FALSE(policy->IsWebSafeScheme(chrome::kChromeSigninScheme));
+}