Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(2597)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/password_manager/password_manager_browsertest.cc

Issue 2721663002: Move Credentials when migrating to HSTS page (Closed)
Patch Set: More Explanation Created 3 years, 9 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/password_manager/credential_manager_browsertest.cc ('k') | chrome/browser/password_manager/password_manager_test_base.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/password_manager/password_manager_browsertest.cc
diff --git a/chrome/browser/password_manager/password_manager_browsertest.cc b/chrome/browser/password_manager/password_manager_browsertest.cc
index 3598b357dac321f4dedaca92508ab9cb630e1f3c..cb0e7712c46fd13f40e1ff212555ec6d2038e52c 100644
--- a/chrome/browser/password_manager/password_manager_browsertest.cc
+++ b/chrome/browser/password_manager/password_manager_browsertest.cc
@@ -1381,11 +1381,6 @@ IN_PROC_BROWSER_TEST_F(
IN_PROC_BROWSER_TEST_F(
PasswordManagerBrowserTestBase,
NoPromptForLoginFailedAndServerPushSeperateLoginForm_HttpsToHttp) {
- base::CommandLine::ForCurrentProcess()->AppendSwitch(
- ::switches::kAllowRunningInsecureContent);
- base::CommandLine::ForCurrentProcess()->AppendSwitch(
- ::switches::kIgnoreCertificateErrors);
-
// This test case cannot inject the scripts via content::ExecuteScript() in
// files served through HTTPS. Therefore the scripts are made part of the HTML
// site and executed on load.
@@ -1410,11 +1405,6 @@ IN_PROC_BROWSER_TEST_F(
IN_PROC_BROWSER_TEST_F(
PasswordManagerBrowserTestBase,
NoPromptForSeperateLoginFormWhenSwitchingFromHttpsToHttp) {
- base::CommandLine::ForCurrentProcess()->AppendSwitch(
- ::switches::kAllowRunningInsecureContent);
- base::CommandLine::ForCurrentProcess()->AppendSwitch(
- ::switches::kIgnoreCertificateErrors);
-
std::string path = "/password/password_form.html";
GURL https_url(https_test_server().GetURL(path));
ASSERT_TRUE(https_url.SchemeIs(url::kHttpsScheme));
@@ -1511,6 +1501,63 @@ IN_PROC_BROWSER_TEST_F(PasswordManagerBrowserTestBase,
CheckElementValue("password_field", "12345");
}
+// Tests that obsolete HTTP credentials are moved when a site migrated to HTTPS
+// and has HSTS enabled.
+IN_PROC_BROWSER_TEST_F(PasswordManagerBrowserTestBase,
+ ObsoleteHttpCredentialMovedOnMigrationToHstsSite) {
+ // Add an http credential to the password store.
+ GURL https_origin = https_test_server().base_url();
+ ASSERT_TRUE(https_origin.SchemeIs(url::kHttpsScheme));
+ GURL::Replacements rep;
+ rep.SetSchemeStr(url::kHttpScheme);
+ GURL http_origin = https_origin.ReplaceComponents(rep);
+ autofill::PasswordForm http_form;
+ http_form.signon_realm = http_origin.spec();
+ http_form.origin = http_origin;
+ http_form.username_value = base::ASCIIToUTF16("user");
+ http_form.password_value = base::ASCIIToUTF16("12345");
+ scoped_refptr<password_manager::TestPasswordStore> password_store =
+ static_cast<password_manager::TestPasswordStore*>(
+ PasswordStoreFactory::GetForProfile(
+ browser()->profile(), ServiceAccessType::IMPLICIT_ACCESS)
+ .get());
+ password_store->AddLogin(http_form);
+
+ // Treat the host of the HTTPS test server as HSTS.
+ AddHSTSHost(https_test_server().host_port_pair().host());
+
+ // Navigate to HTTPS page and trigger the migration.
+ NavigationObserver form_observer(WebContents());
+ ui_test_utils::NavigateToURL(
+ browser(), https_test_server().GetURL("/password/password_form.html"));
+ form_observer.Wait();
+
+ // Issue the query for HTTPS credentials.
+ WaitForPasswordStore();
+
+ // Realize there are no HTTPS credentials and issue the query for HTTP
+ // credentials instead.
+ WaitForPasswordStore();
+
+ // Sync with IO thread before continuing. This is necessary, because the
+ // credential migration triggers a query for the HSTS state which gets
+ // executed on the IO thread. The actual task is empty, because only the reply
+ // is relevant. By the time the reply is executed it is guaranteed that the
+ // migration is completed.
+ const auto empty_lambda = []() {};
+ base::RunLoop run_loop;
+ content::BrowserThread::PostTaskAndReply(content::BrowserThread::IO,
+ FROM_HERE, base::Bind(empty_lambda),
+ run_loop.QuitClosure());
+ run_loop.Run();
+
+ // Only HTTPS passwords should be present.
+ EXPECT_TRUE(
+ password_store->stored_passwords().at(http_origin.spec()).empty());
+ EXPECT_FALSE(
+ password_store->stored_passwords().at(https_origin.spec()).empty());
+}
+
IN_PROC_BROWSER_TEST_F(PasswordManagerBrowserTestBase,
PromptWhenPasswordFormWithoutUsernameFieldSubmitted) {
scoped_refptr<password_manager::TestPasswordStore> password_store =
« no previous file with comments | « chrome/browser/password_manager/credential_manager_browsertest.cc ('k') | chrome/browser/password_manager/password_manager_test_base.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698