Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1920)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos_unittest.cc

Issue 2794803003: PS - Remove Clipboard Read permission from extensions in Public Sessions (except for whitelisted on… (Closed)
Patch Set: Updated comment Created 3 years, 8 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.cc ('k') | chrome/browser/chromeos/login/users/chrome_user_manager_impl.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos_unittest.cc
diff --git a/chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos_unittest.cc b/chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos_unittest.cc
new file mode 100644
index 0000000000000000000000000000000000000000..4065c34e767debeba2be3093ea56473dd5a53245
--- /dev/null
+++ b/chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos_unittest.cc
@@ -0,0 +1,98 @@
+// Copyright 2017 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#include "chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.h"
+
+#include <string>
+
+#include "base/files/file_path.h"
+#include "base/memory/ptr_util.h"
+#include "base/values.h"
+#include "chromeos/login/login_state.h"
+#include "extensions/common/extension.h"
+#include "extensions/common/manifest.h"
+#include "extensions/common/manifest_constants.h"
+#include "extensions/common/permissions/permission_set.h"
+#include "testing/gtest/include/gtest/gtest.h"
+
+namespace extensions {
+
+namespace {
+
+const char kWhitelistedId[] = "cbkkbcmdlboombapidmoeolnmdacpkch";
+const char kBogusId[] = "bogus";
+
+scoped_refptr<Extension> CreateExtension(const std::string& id) {
+ std::string error;
+ base::DictionaryValue manifest;
+ manifest.SetString(manifest_keys::kName, "test");
+ manifest.SetString(manifest_keys::kVersion, "0.1");
+ scoped_refptr<Extension> extension = Extension::Create(
+ base::FilePath(),
+ Manifest::INTERNAL,
+ manifest,
+ Extension::NO_FLAGS,
+ id,
+ &error);
+ return extension;
+}
+
+std::unique_ptr<const PermissionSet> CreatePermissions() {
+ APIPermissionSet apis;
+ apis.insert(APIPermission::kAudio);
+ apis.insert(APIPermission::kClipboardRead);
+ apis.insert(APIPermission::kFullscreen);
+ auto permissions = base::MakeUnique<const PermissionSet>(
+ apis, ManifestPermissionSet(),
+ URLPatternSet(), URLPatternSet());
+ return permissions;
+}
+
+} // namespace
+
+TEST(PermissionsUpdaterDelegateChromeOSTest, NoFilteringOutsidePublicSession) {
+ PermissionsUpdaterDelegateChromeOS delegate;
+ ASSERT_FALSE(chromeos::LoginState::IsInitialized());
+
+ // Whitelisted extension outside PS, nothing filtered.
+ auto extension = CreateExtension(kWhitelistedId);
+ auto granted_permissions = CreatePermissions();
+ delegate.InitializePermissions(extension.get(), &granted_permissions);
+ EXPECT_EQ(*CreatePermissions(), *granted_permissions);
+
+ // Bogus extension ID (never whitelisted) outside PS, nothing filtered.
+ extension = CreateExtension(kBogusId);
+ granted_permissions = CreatePermissions();
+ delegate.InitializePermissions(extension.get(), &granted_permissions);
+ EXPECT_EQ(*CreatePermissions(), *granted_permissions);
+}
+
+TEST(PermissionsUpdaterDelegateChromeOSTest,
+ FilterNonWhitelistedInsidePublicSession) {
+ PermissionsUpdaterDelegateChromeOS delegate;
+ // Set Public Session state.
+ chromeos::LoginState::Initialize();
+ chromeos::LoginState::Get()->SetLoggedInState(
+ chromeos::LoginState::LOGGED_IN_ACTIVE,
+ chromeos::LoginState::LOGGED_IN_USER_PUBLIC_ACCOUNT);
+
+ // Whitelisted extension, nothing gets filtered.
+ auto extension = CreateExtension(kWhitelistedId);
+ auto granted_permissions = CreatePermissions();
+ delegate.InitializePermissions(extension.get(), &granted_permissions);
+ EXPECT_EQ(*CreatePermissions(), *granted_permissions);
+
+ // Bogus extension ID (never whitelisted), ClipboardRead filtered out.
+ extension = CreateExtension(kBogusId);
+ granted_permissions = CreatePermissions();
+ delegate.InitializePermissions(extension.get(), &granted_permissions);
+ EXPECT_FALSE(granted_permissions->HasAPIPermission(
+ APIPermission::kClipboardRead));
+ EXPECT_EQ(2u, granted_permissions->apis().size());
+
+ // Reset state at the end of test.
+ chromeos::LoginState::Shutdown();
+}
+
+} // namespace extensions
« no previous file with comments | « chrome/browser/chromeos/extensions/permissions_updater_delegate_chromeos.cc ('k') | chrome/browser/chromeos/login/users/chrome_user_manager_impl.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698