Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1982)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: components/autofill/core/browser/autofill_manager_unittest.cc

Issue 2419853002: [Autofill] Do not offer autofill suggestions on insecure forms (Closed)
Patch Set: Scheme check for HTTPS Created 4 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « components/autofill/core/browser/autofill_manager.cc ('k') | components/autofill/core/browser/autofill_metrics_unittest.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: components/autofill/core/browser/autofill_manager_unittest.cc
diff --git a/components/autofill/core/browser/autofill_manager_unittest.cc b/components/autofill/core/browser/autofill_manager_unittest.cc
index ce60e53636d9fd897e46c40159a4db3a644339e3..76d8e853b03fa5c0d503e64c92e5c92c15e9802d 100644
--- a/components/autofill/core/browser/autofill_manager_unittest.cc
+++ b/components/autofill/core/browser/autofill_manager_unittest.cc
@@ -890,7 +890,6 @@ class AutofillManagerTest : public testing::Test {
} else {
form->origin = GURL("http://myform.com/form.html");
form->action = GURL("http://myform.com/submit.html");
- autofill_client_.set_is_context_secure(false);
}
FormFieldData field;
@@ -1554,7 +1553,7 @@ TEST_F(AutofillManagerTest, GetCreditCardSuggestions_NonCCNumber) {
}
// Test that we return a warning explaining that credit card profile suggestions
-// are unavailable when the form is not secure.
+// are unavailable when the page and the form target URL are not secure.
TEST_F(AutofillManagerTest, GetCreditCardSuggestions_NonHTTPS) {
// Set up our form data.
FormData form;
@@ -1579,6 +1578,34 @@ TEST_F(AutofillManagerTest, GetCreditCardSuggestions_NonHTTPS) {
EXPECT_FALSE(external_delegate_->on_suggestions_returned_seen());
}
+// Test that we return a warning explaining that credit card profile suggestions
+// are unavailable when the page is secure, but the form target URL is not
+// secure.
+TEST_F(AutofillManagerTest, GetCreditCardSuggestions_TargetURLNonHTTPS) {
+ // Set up our form data.
+ FormData form;
+ CreateTestCreditCardFormData(&form, /* is_https= */ true, false);
+ // However we set the action (target URL) to be HTTP after all.
+ form.action = GURL("http://myform.com/submit.html");
+ std::vector<FormData> forms(1, form);
+ FormsSeen(forms);
+
+ const FormFieldData& field = form.fields[0];
+ GetAutofillSuggestions(form, field);
+
+ // Test that we sent the right values to the external delegate.
+ external_delegate_->CheckSuggestions(
+ kDefaultPageID, Suggestion(l10n_util::GetStringUTF8(
+ IDS_AUTOFILL_WARNING_INSECURE_CONNECTION),
+ "", "", -1));
+
+ // Clear the test credit cards and try again -- we shouldn't return a warning.
+ personal_data_.ClearCreditCards();
+ GetAutofillSuggestions(form, field);
+ // Autocomplete suggestions are queried, but not Autofill.
+ EXPECT_FALSE(external_delegate_->on_suggestions_returned_seen());
+}
+
// Test that we return all credit card suggestions in the case that two cards
// have the same obfuscated number.
TEST_F(AutofillManagerTest, GetCreditCardSuggestions_RepeatedObfuscatedNumber) {
« no previous file with comments | « components/autofill/core/browser/autofill_manager.cc ('k') | components/autofill/core/browser/autofill_metrics_unittest.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698