Changeset 169782 in webkit

Timestamp:

Jun 10, 2014 5:01:18 PM (10 years ago)

Author:

mitz@apple.com

Message:

Source/WebCore: WebCore part of [Cocoa] Handling authentication challenges should not require multiple delegate methods
​https://bugs.webkit.org/show_bug.cgi?id=133697

Reviewed by Anders Carlsson.

• platform/network/AuthenticationClient.h: Declared new virtual member functions for

requesting default handling of a challenge and rejecting a challenge.

• platform/network/ResourceHandle.h: Override new AuthenticationClient functions.
• platform/network/cf/ResourceHandleCFNet.cpp:

(WebCore::ResourceHandle::receivedRequestToPerformDefaultHandling): Added. Calls
CFURLConnectionPerformDefaultHandlingForChallenge.
(WebCore::ResourceHandle::receivedChallengeRejection): Added. Calls
CFURLConnectionRejectChallenge.

• platform/network/cf/SocketStreamHandle.h: Override new AuthenticationClient functions.
• platform/network/cf/SocketStreamHandleCFNet.cpp:

(WebCore::SocketStreamHandle::receivedRequestToPerformDefaultHandling): Added empty
override.
(WebCore::SocketStreamHandle::receivedChallengeRejection): Ditto.

Source/WebKit2: WebKit2 part of [Cocoa] Handling authentication challenges should not require multiple delegate methods
​https://bugs.webkit.org/show_bug.cgi?id=133697

Reviewed by Anders Carlsson.

• Shared/Authentication/AuthenticationManager.cpp:

(WebKit::AuthenticationManager::performDefaultHandling): Added. Calls the new
AuthenticationClient function receivedRequestToPerformDefaultHandling.
(WebKit::AuthenticationManager::rejectProtectionSpaceAndContinue): Added. Calls the new
AuthenticationClient function receivedChallengeRejection.

• Shared/Authentication/AuthenticationManager.h:
• Shared/Authentication/AuthenticationManager.messages.in: Added new messages

PerformDefaultHandling and RejectProtectionSpaceAndContinue.

• Shared/Downloads/DownloadAuthenticationClient.h: Override new AuthenticationClient member

functions.

• Shared/Downloads/ios/DownloadIOS.mm:

(WebKit::Download::receivedRequestToPerformDefaultHandling): Added empty implementation.
(WebKit::Download::receivedChallengeRejection): Ditto.

• Shared/Downloads/mac/DownloadMac.mm:

(WebKit::Download::receivedRequestToPerformDefaultHandling): Added. Forwards to the sender.
(WebKit::Download::receivedChallengeRejection): Ditto.

• UIProcess/API/Cocoa/WKNSURLAuthenticationChallenge.mm:

(checkChallenge): Factored out a bit of code into this helper function.
(-[WKNSURLAuthenticationChallengeSender cancelAuthenticationChallenge:]): Use new helper.
(-[WKNSURLAuthenticationChallengeSender continueWithoutCredentialForAuthenticationChallenge:]):
Ditto.
(-[WKNSURLAuthenticationChallengeSender useCredential:forAuthenticationChallenge:]): Ditto.
(-[WKNSURLAuthenticationChallengeSender performDefaultHandlingForAuthenticationChallenge:]):
Implemented this optional NSURLAuthenticationChallengeSender protocol method by forwarding
to the decision listener.
(-[WKNSURLAuthenticationChallengeSender rejectProtectionSpaceAndContinueWithChallenge:]):
Ditto.

• UIProcess/API/Cocoa/WKNavigationDelegatePrivate.h: Declared new delegate method.

• UIProcess/Authentication/AuthenticationChallengeProxy.cpp:

(WebKit::AuthenticationChallengeProxy::performDefaultHandling): Added. Sends a message to
the authentication manager.
(WebKit::AuthenticationChallengeProxy::rejectProtectionSpaceAndContinue): Ditto.

• UIProcess/Authentication/AuthenticationChallengeProxy.h:

• UIProcess/Authentication/AuthenticationDecisionListener.cpp:

(WebKit::AuthenticationDecisionListener::performDefaultHandling): Added. Forwards to the
authentication challenge proxy.
(WebKit::AuthenticationDecisionListener::rejectProtectionSpaceAndContinue): Ditto.

• UIProcess/Authentication/AuthenticationDecisionListener.h:

• UIProcess/Cocoa/NavigationState.h: Added flag in m_navigationDelegateMethods struct.
• UIProcess/Cocoa/NavigationState.mm:

(WebKit::NavigationState::setNavigationDelegate): Initialize
webViewWillSendRequestForAuthenticationChallenge flag in the delegate methods struct.
(WebKit::NavigationState::LoaderClient::canAuthenticateAgainstProtectionSpaceInFrame): If
the delegate implements -_webView:willSendRequestForAuthenticationChallenge:, return true
here; the delegate will respond with -rejectProtectionSpaceAndContinueWithChallenge: if
it cannot authenticate.
(WebKit::NavigationState::LoaderClient::didReceiveAuthenticationChallengeInFrame): If the
delegate implements -_webView:willSendRequestForAuthenticationChallenge:, send that message.

Location:

trunk/Source

Files:

• WebCore/ChangeLog (modified) (1 diff)
• WebCore/platform/network/AuthenticationClient.h (modified) (1 diff)
• WebCore/platform/network/ResourceHandle.h (modified) (1 diff)
• WebCore/platform/network/cf/ResourceHandleCFNet.cpp (modified) (1 diff)
• WebCore/platform/network/cf/SocketStreamHandle.h (modified) (1 diff)
• WebCore/platform/network/cf/SocketStreamHandleCFNet.cpp (modified) (1 diff)
• WebCore/platform/network/curl/ResourceHandleCurl.cpp (modified) (1 diff)
• WebCore/platform/network/curl/SocketStreamHandle.h (modified) (1 diff)
• WebCore/platform/network/curl/SocketStreamHandleCurl.cpp (modified) (1 diff)
• WebCore/platform/network/mac/ResourceHandleMac.mm (modified) (1 diff)
• WebCore/platform/network/soup/ResourceHandleSoup.cpp (modified) (1 diff)
• WebCore/platform/network/soup/SocketStreamHandle.h (modified) (1 diff)
• WebCore/platform/network/soup/SocketStreamHandleSoup.cpp (modified) (1 diff)
• WebCore/platform/network/win/SocketStreamHandle.h (modified) (1 diff)
• WebCore/platform/network/win/SocketStreamHandleWin.cpp (modified) (1 diff)
• WebKit2/ChangeLog (modified) (1 diff)
• WebKit2/Shared/Authentication/AuthenticationManager.cpp (modified) (1 diff)
• WebKit2/Shared/Authentication/AuthenticationManager.h (modified) (1 diff)
• WebKit2/Shared/Authentication/AuthenticationManager.messages.in (modified) (1 diff)
• WebKit2/Shared/Downloads/Download.h (modified) (1 diff)
• WebKit2/Shared/Downloads/DownloadAuthenticationClient.cpp (modified) (1 diff)
• WebKit2/Shared/Downloads/DownloadAuthenticationClient.h (modified) (1 diff)
• WebKit2/Shared/Downloads/ios/DownloadIOS.mm (modified) (1 diff)
• WebKit2/Shared/Downloads/mac/DownloadMac.mm (modified) (1 diff)
• WebKit2/Shared/Downloads/soup/DownloadSoup.cpp (modified) (1 diff)
• WebKit2/UIProcess/API/Cocoa/WKNSURLAuthenticationChallenge.mm (modified) (3 diffs)
• WebKit2/UIProcess/API/Cocoa/WKNavigationDelegatePrivate.h (modified) (1 diff)
• WebKit2/UIProcess/Authentication/AuthenticationChallengeProxy.cpp (modified) (1 diff)
• WebKit2/UIProcess/Authentication/AuthenticationChallengeProxy.h (modified) (1 diff)
• WebKit2/UIProcess/Authentication/AuthenticationDecisionListener.cpp (modified) (1 diff)
• WebKit2/UIProcess/Authentication/AuthenticationDecisionListener.h (modified) (1 diff)
• WebKit2/UIProcess/Cocoa/NavigationState.h (modified) (1 diff)
• WebKit2/UIProcess/Cocoa/NavigationState.mm (modified) (3 diffs)

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2014-06-10  Dan Bernstein  <mitz@apple.com>
+
+        WebCore part of [Cocoa] Handling authentication challenges should not require multiple delegate methods
+        https://bugs.webkit.org/show_bug.cgi?id=133697
+
+        Reviewed by Anders Carlsson.
+
+        * platform/network/AuthenticationClient.h: Declared new virtual member functions for
+        requesting default handling of a challenge and rejecting a challenge.
+        * platform/network/ResourceHandle.h: Override new AuthenticationClient functions.
+        * platform/network/cf/ResourceHandleCFNet.cpp:
+        (WebCore::ResourceHandle::receivedRequestToPerformDefaultHandling): Added. Calls
+        CFURLConnectionPerformDefaultHandlingForChallenge.
+        (WebCore::ResourceHandle::receivedChallengeRejection): Added. Calls
+        CFURLConnectionRejectChallenge.
+        * platform/network/cf/SocketStreamHandle.h: Override new AuthenticationClient functions.
+        * platform/network/cf/SocketStreamHandleCFNet.cpp:
+        (WebCore::SocketStreamHandle::receivedRequestToPerformDefaultHandling): Added empty
+        override.
+        (WebCore::SocketStreamHandle::receivedChallengeRejection): Ditto.
+
 2014-06-09  Brent Fulgham  <bfulgham@apple.com>
 

trunk/Source/WebCore/platform/network/AuthenticationClient.h

@@ -37 +37 @@
     virtual void receivedRequestToContinueWithoutCredential(const AuthenticationChallenge&) = 0;
     virtual void receivedCancellation(const AuthenticationChallenge&) = 0;
+    virtual void receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&) = 0;
+    virtual void receivedChallengeRejection(const AuthenticationChallenge&) = 0;
 
     void ref() { refAuthenticationClient(); }

trunk/Source/WebCore/platform/network/ResourceHandle.h

@@ -124 +124 @@
     virtual void receivedRequestToContinueWithoutCredential(const AuthenticationChallenge&) override;
     virtual void receivedCancellation(const AuthenticationChallenge&) override;
+    virtual void receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&) override;
+    virtual void receivedChallengeRejection(const AuthenticationChallenge&) override;
 #endif
 

trunk/Source/WebCore/platform/network/cf/ResourceHandleCFNet.cpp

@@ -455 +455 @@
 }
 
+void ResourceHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge& challenge)
+{
+    LOG(Network, "CFNet - receivedRequestToPerformDefaultHandling()");
+    ASSERT(!challenge.isNull());
+    ASSERT(challenge.cfURLAuthChallengeRef());
+    if (challenge != d->m_currentWebChallenge)
+        return;
+
+    CFURLConnectionPerformDefaultHandlingForChallenge(d->m_connection.get(), challenge.cfURLAuthChallengeRef());
+
+    clearAuthentication();
+}
+
+void ResourceHandle::receivedChallengeRejection(const AuthenticationChallenge& challenge)
+{
+    LOG(Network, "CFNet - receivedChallengeRejection()");
+    ASSERT(!challenge.isNull());
+    ASSERT(challenge.cfURLAuthChallengeRef());
+    if (challenge != d->m_currentWebChallenge)
+        return;
+
+    CFURLConnectionRejectChallenge(d->m_connection.get(), challenge.cfURLAuthChallengeRef());
+
+    clearAuthentication();
+}
+
 CFURLStorageSessionRef ResourceHandle::storageSession() const
 {

trunk/Source/WebCore/platform/network/cf/SocketStreamHandle.h

@@ -89 +89 @@
     virtual void receivedRequestToContinueWithoutCredential(const AuthenticationChallenge&);
     virtual void receivedCancellation(const AuthenticationChallenge&);
+    virtual void receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&);
+    virtual void receivedChallengeRejection(const AuthenticationChallenge&);
 
     virtual void refAuthenticationClient() { ref(); }

trunk/Source/WebCore/platform/network/cf/SocketStreamHandleCFNet.cpp

@@ -664 +664 @@
 }
 
+void SocketStreamHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+}
+
+void SocketStreamHandle::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+}
+
 unsigned short SocketStreamHandle::port() const
 {

trunk/Source/WebCore/platform/network/curl/ResourceHandleCurl.cpp

@@ -283 +283 @@
 }
 
+void ResourceHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    ASSERT_NOT_REACHED();
+}
+
+void ResourceHandle::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    ASSERT_NOT_REACHED();
+}
+
 } // namespace WebCore
 

trunk/Source/WebCore/platform/network/curl/SocketStreamHandle.h

@@ -62 +62 @@
         void receivedRequestToContinueWithoutCredential(const AuthenticationChallenge&);
         void receivedCancellation(const AuthenticationChallenge&);
+        void receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&);
+        void receivedChallengeRejection(const AuthenticationChallenge&);
     };
 

trunk/Source/WebCore/platform/network/curl/SocketStreamHandleCurl.cpp

@@ -89 +89 @@
 }
 
+void SocketStreamHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
+void SocketStreamHandle::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
 }  // namespace WebCore
 

trunk/Source/WebCore/platform/network/mac/ResourceHandleMac.mm

@@ -690 +690 @@
 }
 
+void ResourceHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge& challenge)
+{
+    LOG(Network, "Handle %p receivedRequestToPerformDefaultHandling", this);
+
+    ASSERT(!challenge.isNull());
+    if (challenge != d->m_currentWebChallenge)
+        return;
+
+    [[d->m_currentMacChallenge sender] performDefaultHandlingForAuthenticationChallenge:d->m_currentMacChallenge];
+
+    clearAuthentication();
+}
+
+void ResourceHandle::receivedChallengeRejection(const AuthenticationChallenge& challenge)
+{
+    LOG(Network, "Handle %p receivedChallengeRejection", this);
+
+    ASSERT(!challenge.isNull());
+    if (challenge != d->m_currentWebChallenge)
+        return;
+
+    [[d->m_currentMacChallenge sender] rejectProtectionSpaceAndContinueWithChallenge:d->m_currentMacChallenge];
+
+    clearAuthentication();
+}
+
 void ResourceHandle::continueWillCacheResponse(NSCachedURLResponse *response)
 {

trunk/Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp

@@ -1195 +1195 @@
 }
 
+void ResourceHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    ASSERT_NOT_REACHED();
+}
+
+void ResourceHandle::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    ASSERT_NOT_REACHED();
+}
+
 static bool waitingToSendRequest(ResourceHandle* handle)
 {

trunk/Source/WebCore/platform/network/soup/SocketStreamHandle.h

@@ -79 +79 @@
         void receivedRequestToContinueWithoutCredential(const AuthenticationChallenge&);
         void receivedCancellation(const AuthenticationChallenge&);
+        void receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&);
+        void receivedChallengeRejection(const AuthenticationChallenge&);
+
         void beginWaitingForSocketWritability();
         void stopWaitingForSocketWritability();

trunk/Source/WebCore/platform/network/soup/SocketStreamHandleSoup.cpp

@@ -229 +229 @@
 }
 
+void SocketStreamHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
+void SocketStreamHandle::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
 void SocketStreamHandle::beginWaitingForSocketWritability()
 {

trunk/Source/WebCore/platform/network/win/SocketStreamHandle.h

@@ -62 +62 @@
     void receivedRequestToContinueWithoutCredential(const AuthenticationChallenge&);
     void receivedCancellation(const AuthenticationChallenge&);
+    void receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&);
+    void receivedChallengeRejection(const AuthenticationChallenge&);
 };
 

trunk/Source/WebCore/platform/network/win/SocketStreamHandleWin.cpp

@@ -87 +87 @@
 }
 
+void SocketStreamHandle::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
+void SocketStreamHandle::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
 } // namespace WebCore

trunk/Source/WebKit2/ChangeLog

@@ +1 @@
+2014-06-10  Dan Bernstein  <mitz@apple.com>
+
+        WebKit2 part of [Cocoa] Handling authentication challenges should not require multiple delegate methods
+        https://bugs.webkit.org/show_bug.cgi?id=133697
+
+        Reviewed by Anders Carlsson.
+
+        * Shared/Authentication/AuthenticationManager.cpp:
+        (WebKit::AuthenticationManager::performDefaultHandling): Added. Calls the new
+        AuthenticationClient function receivedRequestToPerformDefaultHandling.
+        (WebKit::AuthenticationManager::rejectProtectionSpaceAndContinue): Added. Calls the new
+        AuthenticationClient function receivedChallengeRejection.
+        * Shared/Authentication/AuthenticationManager.h:
+        * Shared/Authentication/AuthenticationManager.messages.in: Added new messages
+        PerformDefaultHandling and RejectProtectionSpaceAndContinue.
+
+        * Shared/Downloads/DownloadAuthenticationClient.h: Override new AuthenticationClient member
+        functions.
+
+        * Shared/Downloads/ios/DownloadIOS.mm:
+        (WebKit::Download::receivedRequestToPerformDefaultHandling): Added empty implementation.
+        (WebKit::Download::receivedChallengeRejection): Ditto.
+
+        * Shared/Downloads/mac/DownloadMac.mm:
+        (WebKit::Download::receivedRequestToPerformDefaultHandling): Added. Forwards to the sender.
+        (WebKit::Download::receivedChallengeRejection): Ditto.
+
+        * UIProcess/API/Cocoa/WKNSURLAuthenticationChallenge.mm:
+        (checkChallenge): Factored out a bit of code into this helper function.
+        (-[WKNSURLAuthenticationChallengeSender cancelAuthenticationChallenge:]): Use new helper.
+        (-[WKNSURLAuthenticationChallengeSender continueWithoutCredentialForAuthenticationChallenge:]):
+        Ditto.
+        (-[WKNSURLAuthenticationChallengeSender useCredential:forAuthenticationChallenge:]): Ditto.
+        (-[WKNSURLAuthenticationChallengeSender performDefaultHandlingForAuthenticationChallenge:]):
+        Implemented this optional NSURLAuthenticationChallengeSender protocol method by forwarding
+        to the decision listener.
+        (-[WKNSURLAuthenticationChallengeSender rejectProtectionSpaceAndContinueWithChallenge:]):
+        Ditto.
+
+        * UIProcess/API/Cocoa/WKNavigationDelegatePrivate.h: Declared new delegate method.
+
+        * UIProcess/Authentication/AuthenticationChallengeProxy.cpp:
+        (WebKit::AuthenticationChallengeProxy::performDefaultHandling): Added. Sends a message to
+        the authentication manager.
+        (WebKit::AuthenticationChallengeProxy::rejectProtectionSpaceAndContinue): Ditto.
+        * UIProcess/Authentication/AuthenticationChallengeProxy.h:
+
+        * UIProcess/Authentication/AuthenticationDecisionListener.cpp:
+        (WebKit::AuthenticationDecisionListener::performDefaultHandling): Added. Forwards to the
+        authentication challenge proxy.
+        (WebKit::AuthenticationDecisionListener::rejectProtectionSpaceAndContinue): Ditto.
+        * UIProcess/Authentication/AuthenticationDecisionListener.h:
+
+        * UIProcess/Cocoa/NavigationState.h: Added flag in m_navigationDelegateMethods struct.
+        * UIProcess/Cocoa/NavigationState.mm:
+        (WebKit::NavigationState::setNavigationDelegate): Initialize
+        webViewWillSendRequestForAuthenticationChallenge flag in the delegate methods struct.
+        (WebKit::NavigationState::LoaderClient::canAuthenticateAgainstProtectionSpaceInFrame): If
+        the delegate implements -_webView:willSendRequestForAuthenticationChallenge:, return true
+        here; the delegate will respond with -rejectProtectionSpaceAndContinueWithChallenge: if
+        it cannot authenticate.
+        (WebKit::NavigationState::LoaderClient::didReceiveAuthenticationChallengeInFrame): If the
+        delegate implements -_webView:willSendRequestForAuthenticationChallenge:, send that message.
+
 2014-06-10  Timothy Horton  <timothy_horton@apple.com>
 

trunk/Source/WebKit2/Shared/Authentication/AuthenticationManager.cpp

@@ -157 +157 @@
 }
 
+void AuthenticationManager::performDefaultHandling(uint64_t challengeID)
+{
+    ASSERT(RunLoop::isMain());
+
+    AuthenticationChallenge challenge = m_challenges.take(challengeID);
+    ASSERT(!challenge.isNull());
+    AuthenticationClient* coreClient = challenge.authenticationClient();
+    if (!coreClient) {
+        // This authentication challenge comes from a download.
+        Download::receivedRequestToPerformDefaultHandling(challenge);
+        return;
+    }
+
+    coreClient->receivedRequestToPerformDefaultHandling(challenge);
+}
+
+void AuthenticationManager::rejectProtectionSpaceAndContinue(uint64_t challengeID)
+{
+    ASSERT(RunLoop::isMain());
+
+    AuthenticationChallenge challenge = m_challenges.take(challengeID);
+    ASSERT(!challenge.isNull());
+    AuthenticationClient* coreClient = challenge.authenticationClient();
+    if (!coreClient) {
+        // This authentication challenge comes from a download.
+        Download::receivedChallengeRejection(challenge);
+        return;
+    }
+
+    coreClient->receivedChallengeRejection(challenge);
+}
+
 } // namespace WebKit

trunk/Source/WebKit2/Shared/Authentication/AuthenticationManager.h

@@ -63 +63 @@
     void continueWithoutCredentialForChallenge(uint64_t challengeID);
     void cancelChallenge(uint64_t challengeID);
-    
+    void performDefaultHandling(uint64_t challengeID);
+    void rejectProtectionSpaceAndContinue(uint64_t challengeID);
+
     uint64_t outstandingAuthenticationChallengeCount() const { return m_challenges.size(); }
 

trunk/Source/WebKit2/Shared/Authentication/AuthenticationManager.messages.in

@@ -25 +25 @@
     void ContinueWithoutCredentialForChallenge(uint64_t challengeID);
     void CancelChallenge(uint64_t challengeID);
+    void PerformDefaultHandling(uint64_t challengeID);
+    void RejectProtectionSpaceAndContinue(uint64_t challengeID);
 }

trunk/Source/WebKit2/Shared/Downloads/Download.h

@@ -101 +101 @@
     static void receivedRequestToContinueWithoutCredential(const WebCore::AuthenticationChallenge&);
     static void receivedCancellation(const WebCore::AuthenticationChallenge&);
+    static void receivedRequestToPerformDefaultHandling(const WebCore::AuthenticationChallenge&);
+    static void receivedChallengeRejection(const WebCore::AuthenticationChallenge&);
 
     void useCredential(const WebCore::AuthenticationChallenge&, const WebCore::Credential&);

trunk/Source/WebKit2/Shared/Downloads/DownloadAuthenticationClient.cpp

@@ -54 +54 @@
 }
 
+void DownloadAuthenticationClient::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    // FIXME (119667): This can probably be just removed.
+}
+
+void DownloadAuthenticationClient::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    // FIXME (119667): This can probably be just removed.
+}
+
 } // namespace WebKit

trunk/Source/WebKit2/Shared/Downloads/DownloadAuthenticationClient.h

@@ -55 +55 @@
     virtual void receivedRequestToContinueWithoutCredential(const WebCore::AuthenticationChallenge&);
     virtual void receivedCancellation(const WebCore::AuthenticationChallenge&);
+    virtual void receivedRequestToPerformDefaultHandling(const WebCore::AuthenticationChallenge&) override;
+    virtual void receivedChallengeRejection(const WebCore::AuthenticationChallenge&) override;
 
     virtual void refAuthenticationClient() { ref(); }

trunk/Source/WebKit2/Shared/Downloads/ios/DownloadIOS.mm

@@ -170 +170 @@
 }
 
+void Download::receivedRequestToPerformDefaultHandling(const WebCore::AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
+void Download::receivedChallengeRejection(const WebCore::AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
 } // namespace WebKit
 

trunk/Source/WebKit2/Shared/Downloads/mac/DownloadMac.mm

@@ -126 +126 @@
 }
 
+void Download::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge& authenticationChallenge)
+{
+    [authenticationChallenge.sender() performDefaultHandlingForAuthenticationChallenge:authenticationChallenge.nsURLAuthenticationChallenge()];
+}
+
+void Download::receivedChallengeRejection(const AuthenticationChallenge& authenticationChallenge)
+{
+    [authenticationChallenge.sender() rejectProtectionSpaceAndContinueWithChallenge:authenticationChallenge.nsURLAuthenticationChallenge()];
+}
+
 } // namespace WebKit
 

trunk/Source/WebKit2/Shared/Downloads/soup/DownloadSoup.cpp

@@ -283 +283 @@
 }
 
+void Download::receivedRequestToPerformDefaultHandling(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
+void Download::receivedChallengeRejection(const AuthenticationChallenge&)
+{
+    notImplemented();
+}
+
 } // namespace WebKit

trunk/Source/WebKit2/UIProcess/API/Cocoa/WKNSURLAuthenticationChallenge.mm

@@ -64 +64 @@
 @implementation WKNSURLAuthenticationChallengeSender
 
-- (void)cancelAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge
+static void checkChallenge(NSURLAuthenticationChallenge *challenge)
 {
     if ([challenge class] != [WKNSURLAuthenticationChallenge class])
         [NSException raise:NSInvalidArgumentException format:@"The challenge was not sent by the receiver."];
+}
 
+- (void)cancelAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge
+{
+    checkChallenge(challenge);
     AuthenticationChallengeProxy& webChallenge = ((WKNSURLAuthenticationChallenge *)challenge)._web_authenticationChallengeProxy;
     webChallenge.listener()->cancel();
@@ -75 +79 @@
 - (void)continueWithoutCredentialForAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge
 {
-    if ([challenge class] != [WKNSURLAuthenticationChallenge class])
-        [NSException raise:NSInvalidArgumentException format:@"The challenge was not sent by the receiver."];
-
+    checkChallenge(challenge);
     AuthenticationChallengeProxy& webChallenge = ((WKNSURLAuthenticationChallenge *)challenge)._web_authenticationChallengeProxy;
     webChallenge.listener()->useCredential(nullptr);
@@ -84 +86 @@
 - (void)useCredential:(NSURLCredential *)credential forAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge
 {
-    if ([challenge class] != [WKNSURLAuthenticationChallenge class])
-        [NSException raise:NSInvalidArgumentException format:@"The challenge was not sent by the receiver."];
+    checkChallenge(challenge);
+    AuthenticationChallengeProxy& webChallenge = ((WKNSURLAuthenticationChallenge *)challenge)._web_authenticationChallengeProxy;
+    webChallenge.listener()->useCredential(WebCredential::create(core(credential)).get());
+}
 
+- (void)performDefaultHandlingForAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge
+{
+    checkChallenge(challenge);
     AuthenticationChallengeProxy& webChallenge = ((WKNSURLAuthenticationChallenge *)challenge)._web_authenticationChallengeProxy;
+    webChallenge.listener()->performDefaultHandling();
+}
 
-    webChallenge.listener()->useCredential(WebCredential::create(core(credential)).get());
+- (void)rejectProtectionSpaceAndContinueWithChallenge:(NSURLAuthenticationChallenge *)challenge
+{
+    checkChallenge(challenge);
+    AuthenticationChallengeProxy& webChallenge = ((WKNSURLAuthenticationChallenge *)challenge)._web_authenticationChallengeProxy;
+    webChallenge.listener()->rejectProtectionSpaceAndContinue();
 }
 

trunk/Source/WebKit2/UIProcess/API/Cocoa/WKNavigationDelegatePrivate.h

@@ -45 +45 @@
 - (void)_webView:(WKWebView *)webView renderingProgressDidChange:(_WKRenderingProgressEvents)progressEvents;
 
+- (void)_webView:(WKWebView *)webView willSendRequestForAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge;
 - (BOOL)_webView:(WKWebView *)webView canAuthenticateAgainstProtectionSpace:(NSURLProtectionSpace *)protectionSpace;
 - (void)_webView:(WKWebView *)webView didReceiveAuthenticationChallenge:(NSURLAuthenticationChallenge *)challenge;

trunk/Source/WebKit2/UIProcess/Authentication/AuthenticationChallengeProxy.cpp

@@ -84 +84 @@
 }
 
+void AuthenticationChallengeProxy::performDefaultHandling()
+{
+    if (!m_challengeID)
+        return;
+
+    m_connection->send(Messages::AuthenticationManager::PerformDefaultHandling(m_challengeID), 0);
+
+    m_challengeID = 0;
+}
+
+void AuthenticationChallengeProxy::rejectProtectionSpaceAndContinue()
+{
+    if (!m_challengeID)
+        return;
+
+    m_connection->send(Messages::AuthenticationManager::RejectProtectionSpaceAndContinue(m_challengeID), 0);
+
+    m_challengeID = 0;
+}
+
 WebCredential* AuthenticationChallengeProxy::proposedCredential() const
 {

trunk/Source/WebKit2/UIProcess/Authentication/AuthenticationChallengeProxy.h

@@ -53 +53 @@
     void useCredential(WebCredential*);
     void cancel();
+    void performDefaultHandling();
+    void rejectProtectionSpaceAndContinue();
 
     AuthenticationDecisionListener* listener() const { return m_listener.get(); }

trunk/Source/WebKit2/UIProcess/Authentication/AuthenticationDecisionListener.cpp

@@ -53 +53 @@
 }
 
+void AuthenticationDecisionListener::performDefaultHandling()
+{
+    if (m_challengeProxy)
+        m_challengeProxy->performDefaultHandling();
+}
+
+void AuthenticationDecisionListener::rejectProtectionSpaceAndContinue()
+{
+    if (m_challengeProxy)
+        m_challengeProxy->rejectProtectionSpaceAndContinue();
+}
+
 void AuthenticationDecisionListener::detachChallenge()
 {

trunk/Source/WebKit2/UIProcess/Authentication/AuthenticationDecisionListener.h

@@ -45 +45 @@
     void useCredential(WebCredential*);
     void cancel();
-    
+    void performDefaultHandling();
+    void rejectProtectionSpaceAndContinue();
+
     void detachChallenge();
 

trunk/Source/WebKit2/UIProcess/Cocoa/NavigationState.h

@@ -146 +146 @@
 
         bool webViewRenderingProgressDidChange : 1;
+        bool webViewWillSendRequestForAuthenticationChallenge : 1;
         bool webViewCanAuthenticateAgainstProtectionSpace : 1;
         bool webViewDidReceiveAuthenticationChallenge : 1;

trunk/Source/WebKit2/UIProcess/Cocoa/NavigationState.mm

@@ -127 +127 @@
     m_navigationDelegateMethods.webViewNavigationDidFinishDocumentLoad = [delegate respondsToSelector:@selector(_webView:navigationDidFinishDocumentLoad:)];
     m_navigationDelegateMethods.webViewRenderingProgressDidChange = [delegate respondsToSelector:@selector(_webView:renderingProgressDidChange:)];
+    m_navigationDelegateMethods.webViewWillSendRequestForAuthenticationChallenge = [delegate respondsToSelector:@selector(_webView:willSendRequestForAuthenticationChallenge:)];
     m_navigationDelegateMethods.webViewCanAuthenticateAgainstProtectionSpace = [delegate respondsToSelector:@selector(_webView:canAuthenticateAgainstProtectionSpace:)];
     m_navigationDelegateMethods.webViewDidReceiveAuthenticationChallenge = [delegate respondsToSelector:@selector(_webView:didReceiveAuthenticationChallenge:)];
@@ -582 +583 @@
 bool NavigationState::LoaderClient::canAuthenticateAgainstProtectionSpaceInFrame(WebKit::WebPageProxy*, WebKit::WebFrameProxy*, WebKit::WebProtectionSpace* protectionSpace)
 {
+    if (m_navigationState.m_navigationDelegateMethods.webViewWillSendRequestForAuthenticationChallenge)
+        return true;
+
     if (!m_navigationState.m_navigationDelegateMethods.webViewCanAuthenticateAgainstProtectionSpace)
         return false;
@@ -594 +598 @@
 void NavigationState::LoaderClient::didReceiveAuthenticationChallengeInFrame(WebKit::WebPageProxy*, WebKit::WebFrameProxy*, WebKit::AuthenticationChallengeProxy* authenticationChallenge)
 {
+    if (m_navigationState.m_navigationDelegateMethods.webViewWillSendRequestForAuthenticationChallenge) {
+        auto navigationDelegate = m_navigationState.m_navigationDelegate.get();
+        if (!navigationDelegate)
+            return;
+
+        [static_cast<id <WKNavigationDelegatePrivate>>(navigationDelegate.get()) _webView:m_navigationState.m_webView willSendRequestForAuthenticationChallenge:wrapper(*authenticationChallenge)];
+        return;
+    }
+
     if (!m_navigationState.m_navigationDelegateMethods.webViewDidReceiveAuthenticationChallenge)
         return;