1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
|
// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#ifndef COMPONENTS_PASSWORD_MANAGER_CORE_BROWSER_PASSWORD_MANAGER_H_
#define COMPONENTS_PASSWORD_MANAGER_CORE_BROWSER_PASSWORD_MANAGER_H_
#include <map>
#include <memory>
#include <string>
#include <vector>
#include "base/callback.h"
#include "base/gtest_prod_util.h"
#include "base/macros.h"
#include "base/observer_list.h"
#include "base/strings/string16.h"
#include "build/build_config.h"
#include "components/autofill/core/common/password_form.h"
#include "components/autofill/core/common/password_form_fill_data.h"
#include "components/password_manager/core/browser/login_model.h"
#include "components/password_manager/core/browser/password_form_manager.h"
class PrefRegistrySimple;
namespace user_prefs {
class PrefRegistrySyncable;
}
namespace autofill {
class FormStructure;
}
namespace password_manager {
class BrowserSavePasswordProgressLogger;
class PasswordManagerClient;
class PasswordManagerDriver;
class PasswordFormManager;
// Per-tab password manager. Handles creation and management of UI elements,
// receiving password form data from the renderer and managing the password
// database through the PasswordStore. The PasswordManager is a LoginModel
// for purposes of supporting HTTP authentication dialogs.
class PasswordManager : public LoginModel {
public:
// Expresses which navigation entry to use to check whether password manager
// is enabled.
enum class NavigationEntryToCheck { LAST_COMMITTED, VISIBLE };
static void RegisterProfilePrefs(user_prefs::PrefRegistrySyncable* registry);
#if defined(OS_WIN)
static void RegisterLocalPrefs(PrefRegistrySimple* registry);
#endif
explicit PasswordManager(PasswordManagerClient* client);
~PasswordManager() override;
typedef base::Callback<void(const autofill::PasswordForm&)>
PasswordSubmittedCallback;
// There is no corresponding remove function as currently all of the
// owners of these callbacks have sufficient lifetimes so that the callbacks
// should always be valid when called.
void AddSubmissionCallback(const PasswordSubmittedCallback& callback);
// Called by a PasswordFormManager when it decides a form can be autofilled
// on the page.
void Autofill(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& form_for_autofill,
const std::map<base::string16, const autofill::PasswordForm*>&
best_matches,
const std::vector<const autofill::PasswordForm*>& federated_matches,
const autofill::PasswordForm& preferred_match,
bool wait_for_username) const;
// Called by a PasswordFormManager when a page initially loads and it decides
// that a form can be autofilled on the page, but a menu of account options
// should be shown instead. Similar to Autofill() above, but does not fill; it
// only shows a selection of accounts.
//
// Currently used by the fill-on-account-select experiment only. See
// https://crbug.com/568713.
void ShowInitialPasswordAccountSuggestions(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& form_for_autofill,
const std::map<base::string16, const autofill::PasswordForm*>&
best_matches,
const autofill::PasswordForm& preferred_match,
bool wait_for_username) const;
// Called by a PasswordFormManager when it decides a HTTP auth dialog can be
// autofilled.
void AutofillHttpAuth(
const std::map<base::string16, const autofill::PasswordForm*>&
best_matches,
const autofill::PasswordForm& preferred_match) const;
// LoginModel implementation.
void AddObserverAndDeliverCredentials(
LoginModelObserver* observer,
const autofill::PasswordForm& observed_form) override;
void RemoveObserver(LoginModelObserver* observer) override;
void GenerationAvailableForForm(const autofill::PasswordForm& form);
// Presaves the form with generated password.
void OnPresaveGeneratedPassword(const autofill::PasswordForm& form);
// Stops treating a password as generated.
void OnPasswordNoLongerGenerated(const autofill::PasswordForm& form);
// Update the generation element and whether generation was triggered
// manually.
void SetGenerationElementAndReasonForForm(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& form,
const base::string16& generation_element,
bool is_manually_triggered);
// Saves the outcome of HTML parsing based form classifier to uploaded proto.
void SaveGenerationFieldDetectedByClassifier(
const autofill::PasswordForm& form,
const base::string16& generation_field);
// TODO(isherman): This should not be public, but is currently being used by
// the LoginPrompt code.
// When a form is submitted, we prepare to save the password but wait
// until we decide the user has successfully logged in. This is step 1
// of 2 (see SavePassword).
// |driver| is optional and if it's given it should be a driver that
// corresponds to a frame from which |form| comes from.
void ProvisionallySavePassword(
const autofill::PasswordForm& form,
const password_manager::PasswordManagerDriver* driver);
// Should be called when the user navigates the main frame. Not called for
// in-page navigation.
void DidNavigateMainFrame();
// Handles password forms being parsed.
void OnPasswordFormsParsed(password_manager::PasswordManagerDriver* driver,
const std::vector<autofill::PasswordForm>& forms);
// Handles password forms being rendered.
void OnPasswordFormsRendered(
password_manager::PasswordManagerDriver* driver,
const std::vector<autofill::PasswordForm>& visible_forms,
bool did_stop_loading);
// Handles a password form being submitted.
virtual void OnPasswordFormSubmitted(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& password_form);
// Handles a password form being submitted, assumes that submission is
// successful and does not do any checks on success of submission.
void OnPasswordFormSubmittedNoChecks(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& password_form);
// Handles a manual request to save password.
void OnPasswordFormForceSaveRequested(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& password_form);
// Handles a request to show manual fallback for password saving, i.e. the
// omnibox icon with the anchored hidden prompt.
void ShowManualFallbackForSaving(
password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& password_form);
// Handles a request to hide manual fallback for password saving.
void HideManualFallbackForSaving();
// Called if |password_form| was filled upon in-page navigation. This often
// means history.pushState being called from JavaScript. If this causes false
// positive in password saving, update http://crbug.com/357696.
// TODO(https://crbug.com/795462): find better name for this function.
void OnInPageNavigation(password_manager::PasswordManagerDriver* driver,
const autofill::PasswordForm& password_form);
void ProcessAutofillPredictions(
password_manager::PasswordManagerDriver* driver,
const std::vector<autofill::FormStructure*>& forms);
// Causes all |pending_login_managers_| to query the password store again.
// Results in updating the fill information on the page.
void UpdateFormManagers();
// Cleans the state by removing all the PasswordFormManager instances and
// visible forms.
void DropFormManagers();
// Returns true if password element is detected on the current page.
bool IsPasswordFieldDetectedOnPage();
PasswordManagerClient* client() { return client_; }
#if defined(UNIT_TEST)
// TODO(crbug.com/639786): Replace using this by quering the factory for
// mocked PasswordFormManagers.
const std::vector<std::unique_ptr<PasswordFormManager>>&
pending_login_managers() {
return pending_login_managers_;
}
#endif
NavigationEntryToCheck entry_to_check() const { return entry_to_check_; }
private:
FRIEND_TEST_ALL_PREFIXES(
PasswordManagerTest,
ShouldBlockPasswordForSameOriginButDifferentSchemeTest);
// Returns true if we can show possible usernames to users in cases where
// the username for the form is ambigious.
bool OtherPossibleUsernamesEnabled() const;
// Clones |matched_manager| and keeps it as |provisional_save_manager_|.
// |form| is saved provisionally to |provisional_save_manager_|.
void ProvisionallySaveManager(const autofill::PasswordForm& form,
PasswordFormManager* matched_manager,
BrowserSavePasswordProgressLogger* logger);
// Returns true if |provisional_save_manager_| is ready for saving and
// non-blacklisted.
bool CanProvisionalManagerSave();
// Returns true if there already exists a provisionally saved password form
// from the same origin as |form|, but with a different and secure scheme.
// This prevents a potential attack where users can be tricked into saving
// unwanted credentials, see http://crbug.com/571580 for details.
bool ShouldBlockPasswordForSameOriginButDifferentScheme(
const autofill::PasswordForm& form) const;
// Returns true if the user needs to be prompted before a password can be
// saved (instead of automatically saving
// the password), based on inspecting the state of
// |provisional_save_manager_|.
bool ShouldPromptUserToSavePassword() const;
// Called when the login was deemed successful. It handles the special case
// when the provisionally saved password is a sync credential, and otherwise
// asks the user about saving the password or saves it directly, as
// appropriate.
void OnLoginSuccessful();
// Checks for every from in |forms| whether |pending_login_managers_| already
// contain a manager for that form. If not, adds a manager for each such form.
void CreatePendingLoginManagers(
password_manager::PasswordManagerDriver* driver,
const std::vector<autofill::PasswordForm>& forms);
// Returns the best match in |pending_login_managers_| for |form|. May return
// nullptr if no match exists.
PasswordFormManager* GetMatchingPendingManager(
const autofill::PasswordForm& form);
// Note about how a PasswordFormManager can transition from
// pending_login_managers_ to provisional_save_manager_ and the infobar.
//
// 1. form "seen"
// | new
// | ___ Infobar
// pending_login -- form submit --> provisional_save ___/
// ^ | \___ (update DB)
// | fail
// |-----------<------<---------| !new
//
// When a form is "seen" on a page, a PasswordFormManager is created
// and stored in this collection until user navigates away from page.
std::vector<std::unique_ptr<PasswordFormManager>> pending_login_managers_;
// When the user submits a password/credential, this contains the
// PasswordFormManager for the form in question until we deem the login
// attempt to have succeeded (as in valid credentials). If it fails, we
// send the PasswordFormManager back to the pending_login_managers_ set.
// Scoped in case PasswordManager gets deleted (e.g tab closes) between the
// time a user submits a login form and gets to the next page.
std::unique_ptr<PasswordFormManager> provisional_save_manager_;
// The embedder-level client. Must outlive this class.
PasswordManagerClient* const client_;
// Observers to be notified of LoginModel events. This is mutable to allow
// notification in const member functions.
mutable base::ObserverList<LoginModelObserver> observers_;
// Callbacks to be notified when a password form has been submitted.
std::vector<PasswordSubmittedCallback> submission_callbacks_;
// Records all visible forms seen during a page load, in all frames of the
// page. When the page stops loading, the password manager checks if one of
// the recorded forms matches the login form from the previous page
// (to see if the login was a failure), and clears the vector.
std::vector<autofill::PasswordForm> all_visible_forms_;
// The user-visible URL from the last time a password was provisionally saved.
GURL main_frame_url_;
// |entry_to_check_| specifies which navigation entry is relevant for
// determining if password manager is enabled. The last commited one is
// relevant for HTML forms, the visible one is for HTTP auth.
NavigationEntryToCheck entry_to_check_ =
NavigationEntryToCheck::LAST_COMMITTED;
DISALLOW_COPY_AND_ASSIGN(PasswordManager);
};
} // namespace password_manager
#endif // COMPONENTS_PASSWORD_MANAGER_CORE_BROWSER_PASSWORD_MANAGER_H_
|
