1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file.
7 #include "base/compiler_specific.h"
8 #include "base/memory/scoped_ptr.h"
9 #include "base/message_loop/message_loop.h"
10 #include "base/values.h"
11 #include "chrome/browser/chrome_notification_types.h"
12 #include "chrome/browser/extensions/active_tab_permission_granter.h"
13 #include "chrome/browser/extensions/tab_helper.h"
14 #include "chrome/browser/profiles/profile.h"
15 #include "chrome/browser/sessions/session_tab_helper.h"
16 #include "chrome/common/extensions/features/feature_channel.h"
17 #include "chrome/test/base/chrome_render_view_host_test_harness.h"
18 #include "components/version_info/version_info.h"
19 #include "content/public/browser/browser_thread.h"
20 #include "content/public/browser/navigation_details.h"
21 #include "content/public/browser/navigation_entry.h"
22 #include "content/public/browser/notification_service.h"
23 #include "content/public/browser/notification_types.h"
24 #include "content/public/browser/web_contents.h"
25 #include "content/public/common/frame_navigate_params.h"
26 #include "content/public/test/test_browser_thread.h"
27 #include "extensions/browser/extension_registry.h"
28 #include "extensions/common/extension.h"
29 #include "extensions/common/extension_builder.h"
30 #include "extensions/common/features/feature.h"
31 #include "extensions/common/permissions/permissions_data.h"
32 #include "extensions/common/value_builder.h"
34 using base::DictionaryValue
;
35 using base::ListValue
;
36 using content::BrowserThread
;
37 using content::NavigationController
;
39 namespace extensions
{
42 scoped_refptr
<const Extension
> CreateTestExtension(
43 const std::string
& id
,
44 bool has_active_tab_permission
,
45 bool has_tab_capture_permission
) {
46 ListBuilder permissions
;
47 if (has_active_tab_permission
)
48 permissions
.Append("activeTab");
49 if (has_tab_capture_permission
)
50 permissions
.Append("tabCapture");
51 return ExtensionBuilder()
52 .SetManifest(DictionaryBuilder()
53 .Set("name", "Extension with ID " + id
)
54 .Set("version", "1.0")
55 .Set("manifest_version", 2)
56 .Set("permissions", permissions
))
61 enum PermittedFeature
{
63 PERMITTED_SCRIPT_ONLY
,
64 PERMITTED_CAPTURE_ONLY
,
68 class ActiveTabTest
: public ChromeRenderViewHostTestHarness
{
71 : current_channel(version_info::Channel::DEV
),
72 extension(CreateTestExtension("deadbeef", true, false)),
73 another_extension(CreateTestExtension("feedbeef", true, false)),
74 extension_without_active_tab(CreateTestExtension("badbeef",
77 extension_with_tab_capture(CreateTestExtension("cafebeef",
81 void SetUp() override
{
82 ChromeRenderViewHostTestHarness::SetUp();
83 TabHelper::CreateForWebContents(web_contents());
87 return SessionTabHelper::IdForTab(web_contents());
90 ActiveTabPermissionGranter
* active_tab_permission_granter() {
91 return extensions::TabHelper::FromWebContents(web_contents())->
92 active_tab_permission_granter();
95 bool IsAllowed(const scoped_refptr
<const Extension
>& extension
,
97 return IsAllowed(extension
, url
, PERMITTED_BOTH
, tab_id());
100 bool IsAllowed(const scoped_refptr
<const Extension
>& extension
,
102 PermittedFeature feature
) {
103 return IsAllowed(extension
, url
, feature
, tab_id());
106 bool IsAllowed(const scoped_refptr
<const Extension
>& extension
,
108 PermittedFeature feature
,
110 const PermissionsData
* permissions_data
= extension
->permissions_data();
111 bool script
= permissions_data
->CanAccessPage(
112 extension
.get(), url
, tab_id
, -1, NULL
);
113 bool capture
= HasTabsPermission(extension
, tab_id
) &&
114 permissions_data
->CanCaptureVisiblePage(tab_id
, NULL
);
116 case PERMITTED_SCRIPT_ONLY
:
117 return script
&& !capture
;
118 case PERMITTED_CAPTURE_ONLY
:
119 return capture
&& !script
;
121 return script
&& capture
;
123 return !script
&& !capture
;
129 bool IsBlocked(const scoped_refptr
<const Extension
>& extension
,
131 return IsBlocked(extension
, url
, tab_id());
134 bool IsBlocked(const scoped_refptr
<const Extension
>& extension
,
137 return IsAllowed(extension
, url
, PERMITTED_NONE
, tab_id
);
140 bool HasTabsPermission(const scoped_refptr
<const Extension
>& extension
) {
141 return HasTabsPermission(extension
, tab_id());
144 bool HasTabsPermission(const scoped_refptr
<const Extension
>& extension
,
146 return extension
->permissions_data()->HasAPIPermissionForTab(
147 tab_id
, APIPermission::kTab
);
150 bool IsGrantedForTab(const Extension
* extension
,
151 const content::WebContents
* web_contents
) {
152 return extension
->permissions_data()->HasAPIPermissionForTab(
153 SessionTabHelper::IdForTab(web_contents
), APIPermission::kTab
);
156 // TODO(justinlin): Remove when tabCapture is moved to stable.
157 ScopedCurrentChannel current_channel
;
159 // An extension with the activeTab permission.
160 scoped_refptr
<const Extension
> extension
;
162 // Another extension with activeTab (for good measure).
163 scoped_refptr
<const Extension
> another_extension
;
165 // An extension without the activeTab permission.
166 scoped_refptr
<const Extension
> extension_without_active_tab
;
168 // An extension with both the activeTab and tabCapture permission.
169 scoped_refptr
<const Extension
> extension_with_tab_capture
;
172 TEST_F(ActiveTabTest
, GrantToSinglePage
) {
173 GURL
google("http://www.google.com");
174 NavigateAndCommit(google
);
176 // No access unless it's been granted.
177 EXPECT_TRUE(IsBlocked(extension
, google
));
178 EXPECT_TRUE(IsBlocked(another_extension
, google
));
179 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
181 EXPECT_FALSE(HasTabsPermission(extension
));
182 EXPECT_FALSE(HasTabsPermission(another_extension
));
183 EXPECT_FALSE(HasTabsPermission(extension_without_active_tab
));
185 active_tab_permission_granter()->GrantIfRequested(extension
.get());
186 active_tab_permission_granter()->GrantIfRequested(
187 extension_without_active_tab
.get());
189 // Granted to extension and extension_without_active_tab, but the latter
190 // doesn't have the activeTab permission so not granted.
191 EXPECT_TRUE(IsAllowed(extension
, google
));
192 EXPECT_TRUE(IsBlocked(another_extension
, google
));
193 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
195 // Other subdomains shouldn't be given access.
196 GURL
mail_google("http://mail.google.com");
197 EXPECT_TRUE(IsAllowed(extension
, mail_google
, PERMITTED_CAPTURE_ONLY
));
198 EXPECT_TRUE(IsBlocked(another_extension
, mail_google
));
199 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, mail_google
));
201 // Reloading the page should clear the active permissions.
204 EXPECT_TRUE(IsBlocked(extension
, google
));
205 EXPECT_TRUE(IsBlocked(another_extension
, google
));
206 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
208 EXPECT_FALSE(HasTabsPermission(extension
));
209 EXPECT_FALSE(HasTabsPermission(another_extension
));
210 EXPECT_FALSE(HasTabsPermission(extension_without_active_tab
));
212 // But they should still be able to be granted again.
213 active_tab_permission_granter()->GrantIfRequested(extension
.get());
215 EXPECT_TRUE(IsAllowed(extension
, google
));
216 EXPECT_TRUE(IsBlocked(another_extension
, google
));
217 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
219 // And grant a few more times redundantly for good measure.
220 active_tab_permission_granter()->GrantIfRequested(extension
.get());
221 active_tab_permission_granter()->GrantIfRequested(extension
.get());
222 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
223 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
224 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
225 active_tab_permission_granter()->GrantIfRequested(extension
.get());
226 active_tab_permission_granter()->GrantIfRequested(extension
.get());
227 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
228 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
230 EXPECT_TRUE(IsAllowed(extension
, google
));
231 EXPECT_TRUE(IsAllowed(another_extension
, google
));
232 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
234 // Navigating to a new URL should clear the active permissions.
235 GURL
chromium("http://www.chromium.org");
236 NavigateAndCommit(chromium
);
238 EXPECT_TRUE(IsBlocked(extension
, google
));
239 EXPECT_TRUE(IsBlocked(another_extension
, google
));
240 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
242 EXPECT_TRUE(IsBlocked(extension
, chromium
));
243 EXPECT_TRUE(IsBlocked(another_extension
, chromium
));
244 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, chromium
));
246 EXPECT_FALSE(HasTabsPermission(extension
));
247 EXPECT_FALSE(HasTabsPermission(another_extension
));
248 EXPECT_FALSE(HasTabsPermission(extension_without_active_tab
));
250 // Should be able to grant to multiple extensions at the same time (if they
251 // have the activeTab permission, of course).
252 active_tab_permission_granter()->GrantIfRequested(extension
.get());
253 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
254 active_tab_permission_granter()->GrantIfRequested(
255 extension_without_active_tab
.get());
257 EXPECT_TRUE(IsAllowed(extension
, google
, PERMITTED_CAPTURE_ONLY
));
258 EXPECT_TRUE(IsAllowed(another_extension
, google
, PERMITTED_CAPTURE_ONLY
));
259 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
261 EXPECT_TRUE(IsAllowed(extension
, chromium
));
262 EXPECT_TRUE(IsAllowed(another_extension
, chromium
));
263 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, chromium
));
265 // Should be able to go back to URLs that were previously cleared.
266 NavigateAndCommit(google
);
268 active_tab_permission_granter()->GrantIfRequested(extension
.get());
269 active_tab_permission_granter()->GrantIfRequested(another_extension
.get());
270 active_tab_permission_granter()->GrantIfRequested(
271 extension_without_active_tab
.get());
273 EXPECT_TRUE(IsAllowed(extension
, google
));
274 EXPECT_TRUE(IsAllowed(another_extension
, google
));
275 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, google
));
277 EXPECT_TRUE(IsAllowed(extension
, chromium
, PERMITTED_CAPTURE_ONLY
));
278 EXPECT_TRUE(IsAllowed(another_extension
, chromium
, PERMITTED_CAPTURE_ONLY
));
279 EXPECT_TRUE(IsBlocked(extension_without_active_tab
, chromium
));
282 TEST_F(ActiveTabTest
, Uninstalling
) {
283 // Some semi-arbitrary setup.
284 GURL
google("http://www.google.com");
285 NavigateAndCommit(google
);
287 active_tab_permission_granter()->GrantIfRequested(extension
.get());
289 EXPECT_TRUE(IsGrantedForTab(extension
.get(), web_contents()));
290 EXPECT_TRUE(IsAllowed(extension
, google
));
292 // Uninstalling the extension should clear its tab permissions.
293 ExtensionRegistry
* registry
=
294 ExtensionRegistry::Get(web_contents()->GetBrowserContext());
295 registry
->TriggerOnUnloaded(extension
.get(),
296 UnloadedExtensionInfo::REASON_DISABLE
);
298 // Note: can't EXPECT_FALSE(IsAllowed) here because uninstalled extensions
299 // are just that... considered to be uninstalled, and the manager might
300 // just ignore them from here on.
302 // Granting the extension again should give them back.
303 active_tab_permission_granter()->GrantIfRequested(extension
.get());
305 EXPECT_TRUE(IsGrantedForTab(extension
.get(), web_contents()));
306 EXPECT_TRUE(IsAllowed(extension
, google
));
309 TEST_F(ActiveTabTest
, OnlyActiveTab
) {
310 GURL
google("http://www.google.com");
311 NavigateAndCommit(google
);
313 active_tab_permission_granter()->GrantIfRequested(extension
.get());
315 EXPECT_TRUE(IsAllowed(extension
, google
, PERMITTED_BOTH
, tab_id()));
316 EXPECT_TRUE(IsBlocked(extension
, google
, tab_id() + 1));
317 EXPECT_FALSE(HasTabsPermission(extension
, tab_id() + 1));
320 TEST_F(ActiveTabTest
, NavigateInPage
) {
321 GURL
google("http://www.google.com");
322 NavigateAndCommit(google
);
324 active_tab_permission_granter()->GrantIfRequested(extension
.get());
326 // Perform an in-page navigation. The extension should not lose the temporary
328 GURL
google_h1("http://www.google.com#h1");
329 NavigateAndCommit(google_h1
);
331 EXPECT_TRUE(IsAllowed(extension
, google
));
332 EXPECT_TRUE(IsAllowed(extension
, google_h1
));
334 GURL
chromium("http://www.chromium.org");
335 NavigateAndCommit(chromium
);
337 EXPECT_FALSE(IsAllowed(extension
, google
));
338 EXPECT_FALSE(IsAllowed(extension
, google_h1
));
339 EXPECT_FALSE(IsAllowed(extension
, chromium
));
341 active_tab_permission_granter()->GrantIfRequested(extension
.get());
343 EXPECT_FALSE(IsAllowed(extension
, google
));
344 EXPECT_FALSE(IsAllowed(extension
, google_h1
));
345 EXPECT_TRUE(IsAllowed(extension
, chromium
));
347 GURL
chromium_h1("http://www.chromium.org#h1");
348 NavigateAndCommit(chromium_h1
);
350 EXPECT_FALSE(IsAllowed(extension
, google
));
351 EXPECT_FALSE(IsAllowed(extension
, google_h1
));
352 EXPECT_TRUE(IsAllowed(extension
, chromium
));
353 EXPECT_TRUE(IsAllowed(extension
, chromium_h1
));
357 EXPECT_FALSE(IsAllowed(extension
, google
));
358 EXPECT_FALSE(IsAllowed(extension
, google_h1
));
359 EXPECT_FALSE(IsAllowed(extension
, chromium
));
360 EXPECT_FALSE(IsAllowed(extension
, chromium_h1
));
363 TEST_F(ActiveTabTest
, ChromeUrlGrants
) {
364 GURL
internal("chrome://version");
365 NavigateAndCommit(internal
);
366 active_tab_permission_granter()->GrantIfRequested(
367 extension_with_tab_capture
.get());
368 // Do not grant tabs/hosts permissions for tab.
369 EXPECT_TRUE(IsAllowed(extension_with_tab_capture
, internal
,
370 PERMITTED_CAPTURE_ONLY
));
371 const PermissionsData
* permissions_data
=
372 extension_with_tab_capture
->permissions_data();
373 EXPECT_TRUE(permissions_data
->HasAPIPermissionForTab(
374 tab_id(), APIPermission::kTabCaptureForTab
));
376 EXPECT_TRUE(IsBlocked(extension_with_tab_capture
, internal
, tab_id() + 1));
377 EXPECT_FALSE(permissions_data
->HasAPIPermissionForTab(
378 tab_id() + 1, APIPermission::kTabCaptureForTab
));
382 } // namespace extensions
