Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(105)

Issue 2478043002: HTTP Bad: Add warning message to autofill dropdown for http sites (Closed)

Created:
4 years, 1 month ago by lshang
Modified:
4 years, 1 month ago
CC:
chromium-reviews, rouslan+autofill_chromium.org, sebsg+autofillwatch_chromium.org, jdonnelly+autofillwatch_chromium.org, mathp+autofillwatch_chromium.org, vabr+watchlistautofill_chromium.org, estade+watch_chromium.org, chrome-apps-syd-reviews_chromium.org
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

HTTP Bad: Add warning message to autofill dropdown for http sites In HTTP Bad project, chrome will generally warn users for http websites which asks for credit cards and password info. Guarded by a switch flag kMarkHttpWithPasswordsOrCcWithChipAndFormWarning, this CL adds a warning message "Login not secure" on top of password suggestions in autofill popup dropdown. Will polish its styles and add icons in the following CLs. BUG=662298, 662297 Committed: https://crrev.com/479fa58cbbb3b9234de6e53c05037afdfcf928d2 Cr-Commit-Position: refs/heads/master@{#430858}

Patch Set 1 #

Total comments: 14

Patch Set 2 : add test to AutofillManagerTest #

Total comments: 4

Patch Set 3 : reuse IsContextSecure() #

Patch Set 4 : remove an unused header file #

Total comments: 21

Patch Set 5 : address review comments #

Patch Set 6 : advise test #

Total comments: 6

Patch Set 7 : nit change #

Unified diffs Side-by-side diffs Delta from patch set Stats (+277 lines, -9 lines) Patch
M components/autofill/core/browser/BUILD.gn View 1 2 2 chunks +2 lines, -0 lines 0 comments Download
M components/autofill/core/browser/DEPS View 1 1 chunk +1 line, -0 lines 0 comments Download
M components/autofill/core/browser/autofill_experiments.h View 1 2 3 4 1 chunk +4 lines, -0 lines 0 comments Download
M components/autofill/core/browser/autofill_experiments.cc View 1 2 3 4 2 chunks +9 lines, -0 lines 0 comments Download
M components/autofill/core/browser/autofill_external_delegate.h View 1 2 3 4 5 6 1 chunk +6 lines, -2 lines 0 comments Download
M components/autofill/core/browser/autofill_external_delegate.cc View 1 2 3 4 5 6 3 chunks +18 lines, -7 lines 0 comments Download
M components/autofill/core/browser/autofill_external_delegate_unittest.cc View 1 2 3 4 1 chunk +26 lines, -0 lines 0 comments Download
M components/autofill/core/browser/autofill_manager.cc View 1 2 3 4 1 chunk +13 lines, -0 lines 0 comments Download
M components/autofill/core/browser/autofill_manager_unittest.cc View 1 2 3 4 5 6 3 chunks +67 lines, -0 lines 0 comments Download
M components/autofill_strings.grdp View 1 2 3 4 2 chunks +7 lines, -0 lines 0 comments Download
M components/password_manager/core/browser/BUILD.gn View 1 2 2 chunks +2 lines, -0 lines 0 comments Download
M components/password_manager/core/browser/DEPS View 1 1 chunk +1 line, -0 lines 0 comments Download
M components/password_manager/core/browser/password_autofill_manager.cc View 1 2 3 4 4 chunks +22 lines, -0 lines 0 comments Download
M components/password_manager/core/browser/password_autofill_manager_unittest.cc View 1 2 3 4 2 chunks +99 lines, -0 lines 0 comments Download

Messages

Total messages: 59 (35 generated)
lshang
estade@, PTAL thanks! This CL adds a warning message on top of autofill popup. For ...
4 years, 1 month ago (2016-11-04 07:50:03 UTC) #5
vabr (Chromium)
Hello, I left some comments, the most important being the request for a test of ...
4 years, 1 month ago (2016-11-04 08:55:30 UTC) #7
vabr (Chromium)
Hah, I over-estimated my ownership over the autofill code, which does not include UI. :) ...
4 years, 1 month ago (2016-11-04 08:58:20 UTC) #8
Evan Stade
We fill credit cards into http sites? When did that change?
4 years, 1 month ago (2016-11-04 15:31:47 UTC) #9
Mathieu
Hi Liu, Thanks for the contribution. However, the description does not match what is being ...
4 years, 1 month ago (2016-11-05 03:26:59 UTC) #11
Evan Stade
where is the mock? Why is the current warning insufficient on its own?
4 years, 1 month ago (2016-11-05 06:27:16 UTC) #12
Mathieu
Hi Evan, Liu sent these mocks to me: go/fns-ui-spec <https://goto.google.com/fns-ui-spec> On Sat, Nov 5, 2016 ...
4 years, 1 month ago (2016-11-05 11:51:27 UTC) #13
Evan Stade
thanks for the link. Those mocks don't look unreasonable. I might suggest eliminating "payment" from ...
4 years, 1 month ago (2016-11-05 21:32:01 UTC) #14
lshang
Hi all, I've updated the patch to show different warning messages for credit card form ...
4 years, 1 month ago (2016-11-07 05:34:02 UTC) #15
estark
https://codereview.chromium.org/2478043002/diff/40001/components/autofill/core/browser/autofill_manager.cc File components/autofill/core/browser/autofill_manager.cc (right): https://codereview.chromium.org/2478043002/diff/40001/components/autofill/core/browser/autofill_manager.cc#newcode578 components/autofill/core/browser/autofill_manager.cc:578: security_state::switches::kMarkHttpWithPasswordsOrCcWithChip) { Drive-by: this should be the new switch, ...
4 years, 1 month ago (2016-11-07 06:06:57 UTC) #17
lshang
https://codereview.chromium.org/2478043002/diff/40001/components/autofill/core/browser/autofill_manager.cc File components/autofill/core/browser/autofill_manager.cc (right): https://codereview.chromium.org/2478043002/diff/40001/components/autofill/core/browser/autofill_manager.cc#newcode578 components/autofill/core/browser/autofill_manager.cc:578: security_state::switches::kMarkHttpWithPasswordsOrCcWithChip) { On 2016/11/07 06:06:57, estark wrote: > Drive-by: ...
4 years, 1 month ago (2016-11-07 06:12:12 UTC) #18
Mathieu
Here are more Autofill comments. This is looking much better :) Vaclav, would you review ...
4 years, 1 month ago (2016-11-07 14:32:27 UTC) #33
vabr (Chromium)
Thanks for notifying me. password_manager code LGTM, and the triggering condition in PasswordManager seems to ...
4 years, 1 month ago (2016-11-07 14:57:27 UTC) #34
lshang
https://codereview.chromium.org/2478043002/diff/120001/components/autofill/core/browser/autofill_external_delegate.cc File components/autofill/core/browser/autofill_external_delegate.cc (right): https://codereview.chromium.org/2478043002/diff/120001/components/autofill/core/browser/autofill_external_delegate.cc#newcode302 components/autofill/core/browser/autofill_external_delegate.cc:302: void AutofillExternalDelegate::ApplyAutofillWarnings( On 2016/11/07 14:32:27, Mathieu Perreault wrote: > ...
4 years, 1 month ago (2016-11-08 06:00:58 UTC) #41
vabr (Chromium)
Still LGTM. https://codereview.chromium.org/2478043002/diff/120001/components/password_manager/core/browser/password_autofill_manager_unittest.cc File components/password_manager/core/browser/password_autofill_manager_unittest.cc (right): https://codereview.chromium.org/2478043002/diff/120001/components/password_manager/core/browser/password_autofill_manager_unittest.cc#newcode674 components/password_manager/core/browser/password_autofill_manager_unittest.cc:674: // Http warning message won't show for ...
4 years, 1 month ago (2016-11-08 07:43:34 UTC) #44
Mathieu
lgtm with nits https://codereview.chromium.org/2478043002/diff/160001/components/autofill/core/browser/autofill_external_delegate.h File components/autofill/core/browser/autofill_external_delegate.h (right): https://codereview.chromium.org/2478043002/diff/160001/components/autofill/core/browser/autofill_external_delegate.h#newcode123 components/autofill/core/browser/autofill_external_delegate.h:123: bool IsAutofillWarningEntry(int frontend_id); this can be ...
4 years, 1 month ago (2016-11-08 17:26:18 UTC) #45
lshang
Thanks all! https://codereview.chromium.org/2478043002/diff/160001/components/autofill/core/browser/autofill_external_delegate.h File components/autofill/core/browser/autofill_external_delegate.h (right): https://codereview.chromium.org/2478043002/diff/160001/components/autofill/core/browser/autofill_external_delegate.h#newcode123 components/autofill/core/browser/autofill_external_delegate.h:123: bool IsAutofillWarningEntry(int frontend_id); On 2016/11/08 17:26:17, Mathieu ...
4 years, 1 month ago (2016-11-08 23:39:06 UTC) #46
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2478043002/180001
4 years, 1 month ago (2016-11-08 23:39:58 UTC) #49
commit-bot: I haz the power
Try jobs failed on following builders: chromium_presubmit on master.tryserver.chromium.linux (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.linux/builders/chromium_presubmit/builds/299972)
4 years, 1 month ago (2016-11-08 23:51:54 UTC) #51
lshang
Hi estark@, there's presubmit errors saying: You need LGTM from owners of depends-on paths in ...
4 years, 1 month ago (2016-11-08 23:55:02 UTC) #52
estark
added DEPs lgtm
4 years, 1 month ago (2016-11-09 04:07:09 UTC) #53
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/v2/patch-status/codereview.chromium.org/2478043002/180001
4 years, 1 month ago (2016-11-09 04:16:42 UTC) #55
commit-bot: I haz the power
Committed patchset #7 (id:180001)
4 years, 1 month ago (2016-11-09 04:26:10 UTC) #57
commit-bot: I haz the power
4 years, 1 month ago (2016-11-09 04:30:14 UTC) #59
Message was sent while issue was closed.
Patchset 7 (id:??) landed as
https://crrev.com/479fa58cbbb3b9234de6e53c05037afdfcf928d2
Cr-Commit-Position: refs/heads/master@{#430858}

Powered by Google App Engine
This is Rietveld 408576698