components/security_state/security_state_model.h - Issue 2346063002: Add new SecurityLevel for Http Bad state

Side by Side Diff: components/security_state/security_state_model.h

Issue 2346063002: Add new SecurityLevel for Http Bad state (Closed)

Patch Set: Improve comment Created 4 years, 3 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

OLD	NEW
1 // Copyright 2015 The Chromium Authors. All rights reserved.	1 // Copyright 2015 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #ifndef COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_	5 #ifndef COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_

6 #define COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_	6 #define COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_

7	7

8 #include <stdint.h>	8 #include <stdint.h>

9	9

10 #include "base/macros.h"	10 #include "base/macros.h"

(...skipping 21 matching lines...) Expand all Loading...
32 // If you reorder, add, or delete values from this enum, you must also	32 // If you reorder, add, or delete values from this enum, you must also

33 // update the UI icons in ToolbarModelImpl::GetIconForSecurityLevel.	33 // update the UI icons in ToolbarModelImpl::GetIconForSecurityLevel.

34 //	34 //

35 // A Java counterpart will be generated for this enum.	35 // A Java counterpart will be generated for this enum.

36 // GENERATED_JAVA_ENUM_PACKAGE: org.chromium.components.security_state	36 // GENERATED_JAVA_ENUM_PACKAGE: org.chromium.components.security_state

37 // GENERATED_JAVA_CLASS_NAME_OVERRIDE: ConnectionSecurityLevel	37 // GENERATED_JAVA_CLASS_NAME_OVERRIDE: ConnectionSecurityLevel

38 enum SecurityLevel {	38 enum SecurityLevel {

39 // HTTP/no URL/HTTPS but with insecure passive content on the page.	39 // HTTP/no URL/HTTPS but with insecure passive content on the page.

40 NONE,	40 NONE,

41	41

	42 // HTTP, but something about the page (e.g., inclusion of private info)

	43 // suggests we should show a warning for it. This is intended for use as

	44 // part of the Http Bad rollout (https://crbug.com/647754).
	Peter Kasting 2016/09/20 00:50:05 OK... I'm still not really sure how this comment i OK... I'm still not really sure how this comment is helpful to me as a reader, or how we're going to know to come back here and remove that at some point. When is this no longer applicable? Clearly in ten years when this is fully rolled out we won't need/want this comment, but what's the point before then where it becomes useless? What about something like this? // HTTP, in a case where we want to show a visible warning about the page's // lack of security. // // The criteria used to classify pages as NONE vs. HTTP_WARNING will change // over time. Eventually, NONE Will be eliminated. See crbug.com/647754. felt 2016/09/20 01:09:56 Done. Show quoted text On 2016/09/20 00:50:05, Peter Kasting wrote: > OK... I'm still not really sure how this comment is helpful to me as a reader, > or how we're going to know to come back here and remove that at some point. > When is this no longer applicable? Clearly in ten years when this is fully > rolled out we won't need/want this comment, but what's the point before then > where it becomes useless? > > What about something like this? > > // HTTP, in a case where we want to show a visible warning about the page's > // lack of security. > // > // The criteria used to classify pages as NONE vs. HTTP_WARNING will change > // over time. Eventually, NONE Will be eliminated. See crbug.com/647754. Done.
	45 HTTP_WARNING,

	46

42 // HTTPS with valid EV cert.	47 // HTTPS with valid EV cert.

43 EV_SECURE,	48 EV_SECURE,

44	49

45 // HTTPS (non-EV) with valid cert.	50 // HTTPS (non-EV) with valid cert.

46 SECURE,	51 SECURE,

47	52

48 // HTTPS, but with an outdated protocol version.	53 // HTTPS, but with an outdated protocol version.

49 SECURITY_WARNING,	54 SECURITY_WARNING,

50	55

51 // HTTPS, but the certificate verification chain is anchored on a	56 // HTTPS, but the certificate verification chain is anchored on a

(...skipping 143 matching lines...) Expand 10 before \| Expand all \| Expand 10 after Loading...
195 mutable VisibleSecurityState visible_security_state_;	200 mutable VisibleSecurityState visible_security_state_;

196	201

197 SecurityStateModelClient* client_;	202 SecurityStateModelClient* client_;

198	203

199 DISALLOW_COPY_AND_ASSIGN(SecurityStateModel);	204 DISALLOW_COPY_AND_ASSIGN(SecurityStateModel);

200 };	205 };

201	206

202 } // namespace security_state	207 } // namespace security_state

203	208

204 #endif // COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_	209 #endif // COMPONENTS_SECURITY_STATE_SECURITY_STATE_MODEL_H_

OLD	NEW

« no previous file with comments | « chrome/browser/ssl/chrome_security_state_model_client.cc ('k') | components/security_state/security_state_model.cc » ('j') | no next file with comments »