Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(88)

Unified Diff: chrome/browser/ssl/chrome_security_state_model_client.cc

Issue 2432933004: Adjust HTTP-bad console messages (Closed)
Patch Set: Created 4 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
Index: chrome/browser/ssl/chrome_security_state_model_client.cc
diff --git a/chrome/browser/ssl/chrome_security_state_model_client.cc b/chrome/browser/ssl/chrome_security_state_model_client.cc
index 0a2c80e27980fea3438838515c75000043be03c5..2532eef7d3a69ae068e9b3a9c80225a84ab496fc 100644
--- a/chrome/browser/ssl/chrome_security_state_model_client.cc
+++ b/chrome/browser/ssl/chrome_security_state_model_client.cc
@@ -338,9 +338,20 @@ void ChromeSecurityStateModelClient::VisibleSSLStateChanged() {
security_state::SecurityStateModel::HTTP_SHOW_WARNING) {
elawrence 2016/10/20 17:18:29 Is the reason that we don't check displayed_privat
estark 2016/10/20 17:45:03 It initially seemed redundant to me, but I think y
web_contents_->GetMainFrame()->AddMessageToConsole(
content::CONSOLE_MESSAGE_LEVEL_WARNING,
- "In Chrome M56 (Jan 2017), this page will be marked "
- "as \"not secure\" in the URL bar. For more "
- "information, see https://goo.gl/zmWq3m");
+ "This page includes a password or credit card input over HTTP. A "
elawrence 2016/10/20 17:18:29 I worry that "over HTTP" is unnecessarily specific
estark 2016/10/20 17:45:03 Done.
+ "warning has been added to the URL bar. For more information, see "
+ "https://goo.gl/zmWq3m. For feedback, please use "
elawrence 2016/10/20 17:18:29 What kind of "feedback" are we looking for here? L
estark 2016/10/20 17:45:03 So you mean that we should delete the bug link bec
+ "https://crbug.com/578317");
+ logged_http_warning_on_current_navigation_ = true;
+ } else if (security_info.security_level ==
+ security_state::SecurityStateModel::NONE &&
+ security_info.displayed_private_user_data_input_on_http) {
+ web_contents_->GetMainFrame()->AddMessageToConsole(
+ content::CONSOLE_MESSAGE_LEVEL_WARNING,
+ "This page includes a password or credit card input over HTTP. A "
+ "warning will be added to the URL bar in Chrome 56 (Jan 2017). For "
+ "more information, see https://goo.gl/zmWq3m. For feedback, please use "
+ "https://crbug.com/578317");
logged_http_warning_on_current_navigation_ = true;
}
}

Powered by Google App Engine
This is Rietveld 408576698