1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102
|
// Copyright 2025 The Chromium Authors
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
#include "content/public/browser/btm_service.h"
#include "base/memory/raw_ptr.h"
#include "chrome/browser/content_settings/cookie_settings_factory.h"
#include "chrome/common/webui_url_constants.h"
#include "chrome/test/base/testing_profile.h"
#include "components/content_settings/core/browser/cookie_settings.h"
#include "components/prefs/pref_service.h"
#include "components/privacy_sandbox/tracking_protection_prefs.h"
#include "content/public/browser/browser_context.h"
#include "content/public/browser/content_browser_client.h"
#include "content/public/common/content_client.h"
#include "content/public/test/browser_task_environment.h"
#include "content/public/test/btm_service_test_utils.h"
#include "net/http/http_status_code.h"
#include "testing/gtest/include/gtest/gtest.h"
namespace content {
bool Has3pcException(BrowserContext* browser_context,
WebContents* web_contents,
const GURL& url,
const GURL& initial_url,
const GURL& final_url) {
BtmRedirectInfoPtr redirect = BtmRedirectInfo::CreateForServer(
UrlAndSourceId(url, ukm::kInvalidSourceId), BtmDataAccessType::kWrite,
base::Time::Now(), false, net::HTTP_FOUND, base::TimeDelta());
Populate3PcExceptions(browser_context, web_contents, initial_url, final_url,
base::span_from_ref(redirect));
return redirect->has_3pc_exception.value();
}
class BtmService3pcExceptionsTest : public testing::Test {
public:
BtmService3pcExceptionsTest()
: cookie_settings_(
CookieSettingsFactory::GetForProfile(&profile_).get()) {}
TestingProfile* GetProfile() { return &profile_; }
protected:
BrowserTaskEnvironment task_environment_;
TestingProfile profile_;
raw_ptr<content_settings::CookieSettings> cookie_settings_;
void SetUp() override {
GetProfile()->GetPrefs()->SetBoolean(prefs::kTrackingProtection3pcdEnabled,
true);
ASSERT_FALSE(Are3PcsGenerallyEnabled());
}
// Add an exception to the third-party cookie blocking rule for
// `third_party_url` embedded by `first_party_url`.
void Add3PCException(const GURL& first_party_url,
const GURL& third_party_url) {
cookie_settings_->SetTemporaryCookieGrantForHeuristic(
third_party_url, first_party_url, base::Days(1),
/*use_schemeless_patterns=*/false);
auto* client = GetContentClientForTesting()->browser();
ASSERT_TRUE(client->IsFullCookieAccessAllowed(
&profile_, nullptr, third_party_url,
blink::StorageKey::CreateFirstParty(
url::Origin::Create(first_party_url)),
/*overrides=*/{}));
ASSERT_FALSE(client->IsFullCookieAccessAllowed(
&profile_, nullptr, first_party_url,
blink::StorageKey::CreateFirstParty(
url::Origin::Create(third_party_url)),
/*overrides=*/{}));
}
bool Are3PcsGenerallyEnabled() {
return ::content::Are3PcsGenerallyEnabled(&profile_, nullptr);
}
};
// Verifies that redirect chains that start or end on embedder URLs do not
// have 3PC exceptions.
TEST_F(BtmService3pcExceptionsTest, EmbedderUrl_DoesNotHaveException) {
GURL non_web_url(chrome::kChromeUINewTabURL);
GURL redirect_url("https://redirect.com");
EXPECT_FALSE(Has3pcException(GetProfile(), nullptr, redirect_url, non_web_url,
GURL("https://final.com")));
EXPECT_FALSE(Has3pcException(GetProfile(), nullptr, redirect_url,
GURL("https://initial.com"), non_web_url));
// Verify that exception logic is working as expected for HTTP(S) URLs.
EXPECT_FALSE(Has3pcException(GetProfile(), nullptr, redirect_url,
GURL("https://initial.com"),
GURL("https://final.com")));
Add3PCException(GURL("https://initial.com"), redirect_url);
EXPECT_TRUE(Has3pcException(GetProfile(), nullptr, redirect_url,
GURL("https://initial.com"),
GURL("https://final.com")));
}
} // namespace content
|