Chromium Code Reviews Chromium Code Reviews
Issue 2515373003:
Post tasks for sensitive input visibility notifications (Closed)
| Index: third_party/WebKit/Source/core/dom/Document.cpp |
| diff --git a/third_party/WebKit/Source/core/dom/Document.cpp b/third_party/WebKit/Source/core/dom/Document.cpp |
| index c44b227186644837c5a4a628e8e496940d1075d4..514a029940744701ceca6a92b704a2f6624a5ba5 100644 |
| --- a/third_party/WebKit/Source/core/dom/Document.cpp |
| +++ b/third_party/WebKit/Source/core/dom/Document.cpp |
| @@ -241,11 +241,13 @@ |
| #include "platform/weborigin/OriginAccessEntry.h" |
| #include "platform/weborigin/SchemeRegistry.h" |
| #include "platform/weborigin/SecurityOrigin.h" |
| +#include "public/platform/InterfaceProvider.h" |
| #include "public/platform/Platform.h" |
| #include "public/platform/WebAddressSpace.h" |
| #include "public/platform/WebFrameScheduler.h" |
| #include "public/platform/WebPrerenderingSupport.h" |
| #include "public/platform/WebScheduler.h" |
| +#include "public/platform/modules/sensitive_input_visibility/sensitive_input_visibility_service.mojom-blink.h" |
| #include "wtf/AutoReset.h" |
| #include "wtf/CurrentTime.h" |
| #include "wtf/DateMath.h" |
| @@ -4329,6 +4331,29 @@ const OriginAccessEntry& Document::accessEntryFromURL() { |
| return *m_accessEntryFromURL; |
| } |
| +void Document::sendSensitiveInputVisibility() { |
| + m_sensitiveInputVisibilityTask = |
|
dcheng
2016/11/24 01:54:08
Let's guard this with an isActive() so we only que
estark
2016/11/24 03:24:48
Done. (Sorry I missed that suggestion earlier.)
|
| + TaskRunnerHelper::get(TaskType::Internal, this) |
| + ->postCancellableTask( |
| + BLINK_FROM_HERE, |
| + WTF::bind(&Document::sendSensitiveInputVisibilityImpl, |
| + wrapWeakPersistent(this))); |
| +} |
| + |
| +void Document::sendSensitiveInputVisibilityImpl() { |
|
haraken
2016/11/24 01:52:40
sendSensitiveInputVisibilityImpl => sendSensitiveI
estark
2016/11/24 03:24:48
Done.
|
| + if (!frame()) |
|
dcheng
2016/11/24 01:54:08
DCHECK(frame()), since I think it should be non-nu
estark
2016/11/24 03:24:48
I couldn't convince myself of this. Is it not poss
dcheng
2016/11/24 03:48:29
Ah-ha. You got me. You're totally right.
I'm a bi
|
| + return; |
| + |
| + mojom::blink::SensitiveInputVisibilityServicePtr sensitiveInputServicePtr; |
| + frame()->interfaceProvider()->getInterface( |
| + mojo::GetProxy(&sensitiveInputServicePtr)); |
| + if (m_passwordCount > 0) { |
| + sensitiveInputServicePtr->PasswordFieldVisibleInInsecureContext(); |
| + return; |
| + } |
| + sensitiveInputServicePtr->AllPasswordFieldsInInsecureContextInvisible(); |
| +} |
| + |
| void Document::registerEventFactory( |
| std::unique_ptr<EventFactoryBase> eventFactory) { |
| DCHECK(!eventFactories().contains(eventFactory.get())); |
| @@ -6406,15 +6431,26 @@ PropertyRegistry* Document::propertyRegistry() { |
| void Document::incrementPasswordCount() { |
| ++m_passwordCount; |
| + if (isSecureContext() || m_passwordCount != 1) { |
| + // The browser process only cares about passwords on pages where the |
| + // top-level URL is not secure. Secure contexts must have a top-level |
| + // URL that is secure, so there is no need to send notifications for |
| + // password fields in secure contexts. |
| + // |
| + // Also, only send a message on the first visible password field; the |
| + // browser process doesn't care about the presence of additional |
| + // password fields beyond that. |
| + return; |
| + } |
| + sendSensitiveInputVisibility(); |
| } |
| void Document::decrementPasswordCount() { |
| DCHECK_GT(m_passwordCount, 0u); |
| --m_passwordCount; |
| -} |
| - |
| -unsigned Document::passwordCount() const { |
| - return m_passwordCount; |
| + if (isSecureContext() || m_passwordCount > 0) |
| + return; |
| + sendSensitiveInputVisibility(); |
| } |
| DEFINE_TRACE(Document) { |
