Changeset 285267 in webkit

Timestamp:

Nov 4, 2021 10:40:39 AM (9 months ago)

Author:

commit-queue@webkit.org

Message:

[WebAuthn] Implement add/remove_virtual_authenticator for transport=internal
​https://bugs.webkit.org/show_bug.cgi?id=232635
<rdar://problem/84942173>

Patch by John Pascoe <J Pascoe> on 2021-11-04
Reviewed by Brent Fulgham.

This change implements much of the plumbing needed to call the virtual authenticator
commands from safaridriver. The idea is that virtual authenticators are added via
the add_virtual_authenticator call, which replaces the default AuthenticatorManager
with a VirtualAuthenticatorManager similar to how we do it for mocks. Then the
VirtualService will create the virtual connections for authenticators as nessesary
to make webauthn calls within WebDriver based tests.

Tested manually via safaridriver.

• UIProcess/Automation/Automation.json:
• UIProcess/Automation/WebAutomationSession.cpp:

(WebKit::toAuthenticatorTransport):
(WebKit::WebAutomationSession::removeVirtualAuthenticator):
(WebKit::WebAutomationSession::addVirtualAuthenticatorCredential):
(WebKit::WebAutomationSession::removeVirtualAuthenticatorCredential):
(WebKit::WebAutomationSession::removeAllVirtualAuthenticatorCredentials):
(WebKit::WebAutomationSession::setVirtualAuthenticatorUserVerified):

• UIProcess/Automation/WebAutomationSession.h:

Plumbing to call from safaridriver

• UIProcess/WebAuthentication/AuthenticatorManager.h:

(WebKit::AuthenticatorManager::isVirtual const):

• UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorConfiguration.h: Added.
• UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorManager.cpp: Added.

(WebKit::VirtualAuthenticatorManager::VirtualAuthenticatorManager):
(WebKit::VirtualAuthenticatorManager::createAuthenticator):
(WebKit::VirtualAuthenticatorManager::removeAuthenticator):
(WebKit::VirtualAuthenticatorManager::createService const):
Manages virtual authenticators, replaces the default manager when used similar to MockAuthenticatorManager.

• UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorManager.h: Added.
• UIProcess/WebAuthentication/Virtual/VirtualLocalConnection.h: Added.
• UIProcess/WebAuthentication/Virtual/VirtualLocalConnection.mm: Added.

(WebKit::VirtualLocalConnection::VirtualLocalConnection):
(WebKit::VirtualLocalConnection::verifyUser):
(WebKit::VirtualLocalConnection::getAttestation const):
(WebKit::VirtualLocalConnection::filterResponses const):

• UIProcess/WebAuthentication/Virtual/VirtualService.h: Added.
• UIProcess/WebAuthentication/Virtual/VirtualService.mm: Added.

(WebKit::VirtualService::VirtualService):
(WebKit::VirtualService::createVirtual):
(WebKit::VirtualService::startDiscoveryInternal):

• UIProcess/WebsiteData/WebsiteDataStore.cpp:

(WebKit::WebsiteDataStore::virtualAuthenticatorManager):

• UIProcess/WebsiteData/WebsiteDataStore.h:
• WebKit.xcodeproj/project.pbxproj:

Location:

trunk/Source/WebKit

Files:

• ChangeLog (modified) (1 diff)
• UIProcess/Automation/Automation.json (modified) (2 diffs)
• UIProcess/Automation/WebAutomationSession.cpp (modified) (2 diffs)
• UIProcess/Automation/WebAutomationSession.h (modified) (1 diff)
• UIProcess/WebAuthentication/AuthenticatorManager.h (modified) (1 diff)
• UIProcess/WebAuthentication/Virtual (added)
• UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorConfiguration.h (added)
• UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorManager.cpp (added)
• UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorManager.h (added)
• UIProcess/WebAuthentication/Virtual/VirtualLocalConnection.h (added)
• UIProcess/WebAuthentication/Virtual/VirtualLocalConnection.mm (added)
• UIProcess/WebAuthentication/Virtual/VirtualService.h (added)
• UIProcess/WebAuthentication/Virtual/VirtualService.mm (added)
• UIProcess/WebsiteData/WebsiteDataStore.cpp (modified) (2 diffs)
• UIProcess/WebsiteData/WebsiteDataStore.h (modified) (2 diffs)
• WebKit.xcodeproj/project.pbxproj (modified) (6 diffs)

trunk/Source/WebKit/ChangeLog

@@ +1 @@
+2021-11-04  John Pascoe  <j_pascoe@apple.com>
+
+        [WebAuthn] Implement add/remove_virtual_authenticator for transport=internal
+        https://bugs.webkit.org/show_bug.cgi?id=232635
+        <rdar://problem/84942173>
+
+        Reviewed by Brent Fulgham.
+
+        This change implements much of the plumbing needed to call the virtual authenticator
+        commands from safaridriver. The idea is that virtual authenticators are added via
+        the add_virtual_authenticator call, which replaces the default AuthenticatorManager
+        with a VirtualAuthenticatorManager similar to how we do it for mocks. Then the
+        VirtualService will create the virtual connections for authenticators as nessesary
+        to make webauthn calls within WebDriver based tests.
+
+        Tested manually via safaridriver.
+
+        * UIProcess/Automation/Automation.json:
+        * UIProcess/Automation/WebAutomationSession.cpp:
+        (WebKit::toAuthenticatorTransport):
+        (WebKit::WebAutomationSession::removeVirtualAuthenticator):
+        (WebKit::WebAutomationSession::addVirtualAuthenticatorCredential):
+        (WebKit::WebAutomationSession::removeVirtualAuthenticatorCredential):
+        (WebKit::WebAutomationSession::removeAllVirtualAuthenticatorCredentials):
+        (WebKit::WebAutomationSession::setVirtualAuthenticatorUserVerified):
+        * UIProcess/Automation/WebAutomationSession.h:
+        Plumbing to call from safaridriver
+        * UIProcess/WebAuthentication/AuthenticatorManager.h:
+        (WebKit::AuthenticatorManager::isVirtual const):
+        * UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorConfiguration.h: Added.
+        * UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorManager.cpp: Added.
+        (WebKit::VirtualAuthenticatorManager::VirtualAuthenticatorManager):
+        (WebKit::VirtualAuthenticatorManager::createAuthenticator):
+        (WebKit::VirtualAuthenticatorManager::removeAuthenticator):
+        (WebKit::VirtualAuthenticatorManager::createService const):
+        Manages virtual authenticators, replaces the default manager when used similar to MockAuthenticatorManager.
+        * UIProcess/WebAuthentication/Virtual/VirtualAuthenticatorManager.h: Added.
+        * UIProcess/WebAuthentication/Virtual/VirtualLocalConnection.h: Added.
+        * UIProcess/WebAuthentication/Virtual/VirtualLocalConnection.mm: Added.
+        (WebKit::VirtualLocalConnection::VirtualLocalConnection):
+        (WebKit::VirtualLocalConnection::verifyUser):
+        (WebKit::VirtualLocalConnection::getAttestation const):
+        (WebKit::VirtualLocalConnection::filterResponses const):
+        * UIProcess/WebAuthentication/Virtual/VirtualService.h: Added.
+        * UIProcess/WebAuthentication/Virtual/VirtualService.mm: Added.
+        (WebKit::VirtualService::VirtualService):
+        (WebKit::VirtualService::createVirtual):
+        (WebKit::VirtualService::startDiscoveryInternal):
+        * UIProcess/WebsiteData/WebsiteDataStore.cpp:
+        (WebKit::WebsiteDataStore::virtualAuthenticatorManager):
+        * UIProcess/WebsiteData/WebsiteDataStore.h:
+        * WebKit.xcodeproj/project.pbxproj:
+
 2021-11-04  Lauro Moura  <lmoura@igalia.com>
 

trunk/Source/WebKit/UIProcess/Automation/Automation.json

@@ -336 +336 @@
                 { "name": "duration", "type": "integer", "optional": true, "description": "The minimum number of milliseconds that must elapse while the relevant input source transitions to this state." }
             ]
+        },
+        {
+            "id": "AuthenticatorProtocol",
+            "type": "string",
+            "description": "This enum contains the different protocol types supported by virtual authenticators.",
+            "enum": [
+                "ctap1_u2f",
+                "ctap2",
+                "ctap2_1"
+            ]
+        },
+        {
+            "id": "AuthenticatorTransport",
+            "type": "string",
+            "description": "Authenticators may implement various transports for communicating with clients. This enumeration defines hints as to how clients might communicate with a particular authenticator in order to obtain an assertion for a specific credential.",
+            "enum": [
+                "usb",
+                "nfc",
+                "ble",
+                "internal"
+            ]
+        },
+        {
+            "id": "VirtualAuthenticatorCredential",
+            "type": "object",
+            "description": "A credential object used for virtual authenticators.",
+            "properties": [
+                { "name": "credentialId", "type": "string", "description": "The Credential ID encoded using Base64url Encoding."},
+                { "name": "isResidentCredential", "type": "boolean", "description": "If set to true, a client-side discoverable credential is created. If set to false, a server-side credential is created instead."},
+                { "name": "rpId", "type": "string", "description": "The Relying Party ID the credential is scoped to."},
+                { "name": "privateKey", "type": "string", "description": "An asymmetric key package containing a single private key per [RFC5958], encoded using Base64url Encoding." },
+                { "name": "userHandle", "type": "string", "optional": true, "description": "The userHandle associated to the credential encoded using Base64url Encoding. This property may not be defined." },
+                { "name": "signCount", "type": "integer", "description": "The initial value for a signature counter associated to the public key credential source." },
+                { "name": "largeBlob", "type": "string", "optional": true, "description": "The large, per-credential blob associated to the public key credential source, encoded using Base64url Encoding. This property may not be defined." }
+            ]
+        },
+        {
+            "id": "VirtualAuthenticatorConfiguration",
+            "type": "object",
+            "description": "Parameters used when creating a virtual authenticator",
+            "properties": [
+                { "name": "protocol", "$ref": "AuthenticatorProtocol", "description": "The protocol of the authenticator" },
+                { "name": "transport", "$ref": "AuthenticatorTransport", "description": "The transport of the protocol" },
+                { "name": "hasResidentKey", "type": "boolean", "optional": true, "description": "If the authenticator has a resident key" },
+                { "name": "hasUserVerification", "type": "boolean", "optional": true, "description": "If the authenticator supports user verification" },
+                { "name": "isUserConsenting", "type": "boolean", "optional": true, "description": "If the virtual authenticator should consent to requests"},
+                { "name": "isUserVerified", "type": "boolean", "optional": true, "description": "If user verification requests should succeeed"},
+                { "name": "extensions", "type": "array", "items": {"type": "string"}, "optional": true, "description": "An array containing extension identifiers" },
+                { "name": "uvm", "type": "array", "items": {"type": "integer"}, "optional": true, "description": "Up to 3 User Verification Method entries"}
+            ]
         }
     ],
@@ -714 +764 @@
                 { "name": "permissions", "type": "array", "items": { "$ref": "SessionPermissionData" }, "description": "Array of session permissions to set, if they are available." }
             ]
+        },
+        {
+            "name": "addVirtualAuthenticator",
+            "description": "Adds a virtual web authentication authenticator for the specified browsing context.",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticator", "$ref": "VirtualAuthenticatorConfiguration", "description": "The configuration for the virtual authenticator to be created." }
+            ],
+            "returns": [
+                { "name": "authenticatorId", "type": "string", "description": "The authenticatorId of the created authenticator" }
+            ]
+        },
+        {
+            "name": "removeVirtualAuthenticator",
+            "description": "Removes a virtual web authentication authenticator for the specified browsing context.",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticatorId", "type": "string", "description": "The virtual authenticator id to remove." }
+            ]
+        },
+        {
+            "name": "addVirtualAuthenticatorCredential",
+            "description": "Add a credential to a specified virutal authenticator for the specified browsing context",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticatorId", "type": "string", "description": "The virtual authenticator id to add the credential to." },
+                { "name": "credential", "$ref": "VirtualAuthenticatorCredential", "description": "The parameters of the credential to add." }
+            ]
+        },
+        {
+            "name": "getVirtualAuthenticatorCredentials",
+            "description": "Get all credentials for a given virtual authenticator for the specified browsing context",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticatorId", "type": "string", "description": "The virtual authenticator id to fetch all credentials for." }
+            ],
+            "returns": [
+                { "name": "credentials", "type": "array", "items": { "$ref": "VirtualAuthenticatorCredential" }, "description": "Array of credentials for given virtual authenticator" }
+            ]
+        },
+        {
+            "name": "removeVirtualAuthenticatorCredential",
+            "description": "Remove a credential from a virtual authenticator for the specified browsing context",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticatorId", "type": "string", "description": "The virtual authenticator id to fetch all credentials for." },
+                { "name": "credentialId", "type": "string", "description": "The credentialId of the credential to remove from the virtual authenticator"}
+            ]
+        },
+        {
+            "name": "removeAllVirtualAuthenticatorCredentials",
+            "description": "Remove all credentials from a given virtual authenticatior for the specified browsing context",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticatorId", "type": "string", "description": "The virtual authenticator id to fetch all credentials for." }
+            ]
+        },
+        {
+            "name": "setVirtualAuthenticatorUserVerified",
+            "description": "set isUserVerified property for a given virtual authenticator for the specified browsing context",
+            "parameters": [
+                { "name": "browsingContextHandle", "$ref": "BrowsingContextHandle", "description": "The handle for the browsing context." },
+                { "name": "authenticatorId", "type": "string", "description": "The virtual authenticator id to fetch all credentials for." },
+                { "name": "isUserVerified", "type": "boolean", "description": "The isUserVerified value to set on the given virtual authenticator"}
+            ]
         }
     ],

trunk/Source/WebKit/UIProcess/Automation/WebAutomationSession.cpp

@@ -54 +54 @@
 #include <wtf/text/StringConcatenate.h>
 
+#if ENABLE(WEB_AUTHN)
+#include "VirtualAuthenticatorManager.h"
+#include <WebCore/AuthenticatorTransport.h>
+#endif // ENABLE(WEB_AUTHN)
+
 namespace WebKit {
 
@@ -1529 +1534 @@
 
     return { };
+}
+
+#if ENABLE(WEB_AUTHN)
+static WebCore::AuthenticatorTransport toAuthenticatorTransport(Inspector::Protocol::Automation::AuthenticatorTransport transport)
+{
+    switch (transport) {
+    case Inspector::Protocol::Automation::AuthenticatorTransport::Usb:
+        return WebCore::AuthenticatorTransport::Usb;
+    case Inspector::Protocol::Automation::AuthenticatorTransport::Nfc:
+        return WebCore::AuthenticatorTransport::Nfc;
+    case Inspector::Protocol::Automation::AuthenticatorTransport::Ble:
+        return WebCore::AuthenticatorTransport::Ble;
+    case Inspector::Protocol::Automation::AuthenticatorTransport::Internal:
+        return WebCore::AuthenticatorTransport::Internal;
+    default:
+        ASSERT_NOT_REACHED();
+        return WebCore::AuthenticatorTransport::Internal;
+    }
+}
+#endif // ENABLE(WEB_AUTHN)
+
+Inspector::Protocol::ErrorStringOr<String /* authenticatorId */> WebAutomationSession::addVirtualAuthenticator(const String& browsingContextHandle, Ref<JSON::Object>&& authenticator)
+{
+#if ENABLE(WEB_AUTHN)
+    auto protocol = authenticator->getString("protocol"_s);
+    if (!protocol)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'protocol' is missing or invalid.");
+    auto transport = authenticator->getString("transport"_s);
+    if (!transport)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'transport' is missing or invalid.");
+    auto parsedTransport = Inspector::Protocol::AutomationHelpers::parseEnumValueFromString<Inspector::Protocol::Automation::AuthenticatorTransport>(transport);
+    if (!parsedTransport)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'transport' has an unknown value.");
+    auto hasResidentKey = authenticator->getBoolean("hasResidentKey"_s);
+    if (!hasResidentKey)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'hasResidentKey' is missing or invalid.");
+    auto hasUserVerification = authenticator->getBoolean("hasUserVerification"_s);
+    if (!hasUserVerification)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'hasUserVerification' is missing or invalid.");
+    auto isUserConsenting = authenticator->getBoolean("isUserConsenting"_s);
+    if (!isUserConsenting)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'isUserConsenting' is missing or invalid.");
+    auto isUserVerified = authenticator->getBoolean("isUserVerified"_s);
+    if (!isUserVerified)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "The parameter 'isUserVerified' is missing or invalid.");
+
+    auto page = webPageProxyForHandle(browsingContextHandle);
+    if (!page)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR(WindowNotFound);
+    return page->websiteDataStore().virtualAuthenticatorManager().createAuthenticator({
+        .protocol = protocol,
+        .transport = toAuthenticatorTransport(parsedTransport.value()),
+        .hasResidentKey = *hasResidentKey,
+        .hasUserVerification = *hasUserVerification,
+        .isUserConsenting = *isUserConsenting,
+        .isUserVerified = *isUserVerified,
+    });
+#else
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
+#endif // ENABLE(WEB_AUTHN)
+}
+
+Inspector::Protocol::ErrorStringOr<void> WebAutomationSession::removeVirtualAuthenticator(const String& browsingContextHandle, const String& authenticatorId)
+{
+#if ENABLE(WEB_AUTHN)
+    auto page = webPageProxyForHandle(browsingContextHandle);
+    if (!page)
+        SYNC_FAIL_WITH_PREDEFINED_ERROR(WindowNotFound);
+    if (!page->websiteDataStore().virtualAuthenticatorManager().removeAuthenticator(authenticatorId))
+        SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(InvalidParameter, "No such authenticator exists.");
+    return { };
+#else
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
+#endif // ENABLE(WEB_AUTHN)
+}
+
+Inspector::Protocol::ErrorStringOr<void> WebAutomationSession::addVirtualAuthenticatorCredential(const String& browsingContextHandle, const String& authenticatorId, Ref<JSON::Object>&& credential)
+{
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
+}
+
+Inspector::Protocol::ErrorStringOr<Ref<JSON::ArrayOf<Inspector::Protocol::Automation::VirtualAuthenticatorCredential>> /* credentials */> WebAutomationSession::getVirtualAuthenticatorCredentials(const String& browsingContextHandle, const String& authenticatorId)
+{
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
+}
+
+Inspector::Protocol::ErrorStringOr<void> WebAutomationSession::removeVirtualAuthenticatorCredential(const String& browsingContextHandle, const String& authenticatorId, const String& credentialId)
+{
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
+}
+
+Inspector::Protocol::ErrorStringOr<void> WebAutomationSession::removeAllVirtualAuthenticatorCredentials(const String& browsingContextHandle, const String& authenticatorId)
+{
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
+}
+
+Inspector::Protocol::ErrorStringOr<void> WebAutomationSession::setVirtualAuthenticatorUserVerified(const String& browsingContextHandle, const String& authenticatorId, bool isUserVerified)
+{
+    SYNC_FAIL_WITH_PREDEFINED_ERROR_AND_DETAILS(NotImplemented, "This method is not yet implemented.");
 }
 

trunk/Source/WebKit/UIProcess/Automation/WebAutomationSession.h

@@ -205 +205 @@
     Inspector::Protocol::ErrorStringOr<void> setSessionPermissions(Ref<JSON::Array>&&);
 
+    Inspector::Protocol::ErrorStringOr<String /* authenticatorId */> addVirtualAuthenticator(const String& browsingContextHandle, Ref<JSON::Object>&& authenticator);
+    Inspector::Protocol::ErrorStringOr<void> removeVirtualAuthenticator(const String& browsingContextHandle, const String& authenticatorId);
+    Inspector::Protocol::ErrorStringOr<void> addVirtualAuthenticatorCredential(const String& browsingContextHandle, const String& authenticatorId, Ref<JSON::Object>&& credential);
+    Inspector::Protocol::ErrorStringOr<Ref<JSON::ArrayOf<Inspector::Protocol::Automation::VirtualAuthenticatorCredential>> /* credentials */> getVirtualAuthenticatorCredentials(const String& browsingContextHandle, const String& authenticatorId);
+    Inspector::Protocol::ErrorStringOr<void> removeVirtualAuthenticatorCredential(const String& browsingContextHandle, const String& authenticatorId, const String& credentialId);
+    Inspector::Protocol::ErrorStringOr<void> removeAllVirtualAuthenticatorCredentials(const String& browsingContextHandle, const String& authenticatorId);
+    Inspector::Protocol::ErrorStringOr<void> setVirtualAuthenticatorUserVerified(const String& browsingContextHandle, const String& authenticatorId, bool isUserVerified);
+
 #if PLATFORM(MAC)
     void inspectBrowsingContext(const Inspector::Protocol::Automation::BrowsingContextHandle&, std::optional<bool>&& enableAutoCapturing, Ref<InspectBrowsingContextCallback>&&);

trunk/Source/WebKit/UIProcess/WebAuthentication/AuthenticatorManager.h

@@ -70 +70 @@
 
     virtual bool isMock() const { return false; }
+    virtual bool isVirtual() const { return false; }
 
     void enableModernWebAuthentication();

trunk/Source/WebKit/UIProcess/WebsiteData/WebsiteDataStore.cpp

@@ -83 +83 @@
 #endif
 
+#if ENABLE(WEB_AUTHN)
+#include "VirtualAuthenticatorManager.h"
+#endif // ENABLE(WEB_AUTHN)
+
 namespace WebKit {
 
@@ -1946 +1950 @@
     static_cast<MockAuthenticatorManager*>(&m_authenticatorManager)->setTestConfiguration(WTFMove(configuration));
 }
+
+VirtualAuthenticatorManager& WebsiteDataStore::virtualAuthenticatorManager()
+{
+    if (!m_authenticatorManager->isVirtual())
+        m_authenticatorManager = makeUniqueRef<VirtualAuthenticatorManager>();
+    return static_cast<VirtualAuthenticatorManager&>(m_authenticatorManager.get());
+}
 #endif
 

trunk/Source/WebKit/UIProcess/WebsiteData/WebsiteDataStore.h

@@ -88 +88 @@
 class NetworkProcessProxy;
 class SOAuthorizationCoordinator;
+class VirtualAuthenticatorManager;
 class WebPageProxy;
 class WebProcessPool;
@@ -308 +309 @@
     AuthenticatorManager& authenticatorManager() { return m_authenticatorManager.get(); }
     void setMockWebAuthenticationConfiguration(WebCore::MockWebAuthenticationConfiguration&&);
+    VirtualAuthenticatorManager& virtualAuthenticatorManager();
 #endif
 

trunk/Source/WebKit/WebKit.xcodeproj/project.pbxproj

@@ -1050 +1050 @@
                 5272D4C91E735F0900EB4290 /* WKProtectionSpaceNS.h in Headers */ = {isa = PBXBuildFile; fileRef = 5272D4C71E735F0900EB4290 /* WKProtectionSpaceNS.h */; settings = {ATTRIBUTES = (Private, ); }; };
                 528C37C1195CBB1A00D8B9CC /* WKBackForwardListPrivate.h in Headers */ = {isa = PBXBuildFile; fileRef = 1A9F28101958F478008CAC72 /* WKBackForwardListPrivate.h */; settings = {ATTRIBUTES = (Private, ); }; };
+                52CDC5C42731DA0D00A3E3EB /* VirtualAuthenticatorConfiguration.h in Headers */ = {isa = PBXBuildFile; fileRef = 52CDC5BD2731DA0C00A3E3EB /* VirtualAuthenticatorConfiguration.h */; };
+                52CDC5C52731DA0D00A3E3EB /* VirtualService.mm in Sources */ = {isa = PBXBuildFile; fileRef = 52CDC5BE2731DA0C00A3E3EB /* VirtualService.mm */; };
+                52CDC5C62731DA0D00A3E3EB /* VirtualAuthenticatorManager.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 52CDC5BF2731DA0C00A3E3EB /* VirtualAuthenticatorManager.cpp */; };
+                52CDC5C72731DA0D00A3E3EB /* VirtualLocalConnection.h in Headers */ = {isa = PBXBuildFile; fileRef = 52CDC5C02731DA0C00A3E3EB /* VirtualLocalConnection.h */; };
+                52CDC5C82731DA0D00A3E3EB /* VirtualService.h in Headers */ = {isa = PBXBuildFile; fileRef = 52CDC5C12731DA0C00A3E3EB /* VirtualService.h */; };
+                52CDC5C92731DA0D00A3E3EB /* VirtualLocalConnection.mm in Sources */ = {isa = PBXBuildFile; fileRef = 52CDC5C22731DA0C00A3E3EB /* VirtualLocalConnection.mm */; };
+                52CDC5CA2731DA0D00A3E3EB /* VirtualAuthenticatorManager.h in Headers */ = {isa = PBXBuildFile; fileRef = 52CDC5C32731DA0C00A3E3EB /* VirtualAuthenticatorManager.h */; };
                 52D5A1B01C57495A00DE34A3 /* VideoFullscreenManagerProxy.h in Headers */ = {isa = PBXBuildFile; fileRef = 52D5A1AA1C57494E00DE34A3 /* VideoFullscreenManagerProxy.h */; };
                 52F060E11654318500F3281B /* NetworkContentRuleListManagerMessageReceiver.cpp in Sources */ = {isa = PBXBuildFile; fileRef = 52F060DD1654317500F3281B /* NetworkContentRuleListManagerMessageReceiver.cpp */; };
@@ -4070 +4077 @@
                 5272D4C71E735F0900EB4290 /* WKProtectionSpaceNS.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; name = WKProtectionSpaceNS.h; path = mac/WKProtectionSpaceNS.h; sourceTree = "<group>"; };
                 5272D4C81E735F0900EB4290 /* WKProtectionSpaceNS.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; name = WKProtectionSpaceNS.mm; path = mac/WKProtectionSpaceNS.mm; sourceTree = "<group>"; };
+                52CDC5BD2731DA0C00A3E3EB /* VirtualAuthenticatorConfiguration.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = VirtualAuthenticatorConfiguration.h; sourceTree = "<group>"; };
+                52CDC5BE2731DA0C00A3E3EB /* VirtualService.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = VirtualService.mm; sourceTree = "<group>"; };
+                52CDC5BF2731DA0C00A3E3EB /* VirtualAuthenticatorManager.cpp */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.cpp; path = VirtualAuthenticatorManager.cpp; sourceTree = "<group>"; };
+                52CDC5C02731DA0C00A3E3EB /* VirtualLocalConnection.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = VirtualLocalConnection.h; sourceTree = "<group>"; };
+                52CDC5C12731DA0C00A3E3EB /* VirtualService.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = VirtualService.h; sourceTree = "<group>"; };
+                52CDC5C22731DA0C00A3E3EB /* VirtualLocalConnection.mm */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.cpp.objcpp; path = VirtualLocalConnection.mm; sourceTree = "<group>"; };
+                52CDC5C32731DA0C00A3E3EB /* VirtualAuthenticatorManager.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = VirtualAuthenticatorManager.h; sourceTree = "<group>"; };
                 52D5A1AA1C57494E00DE34A3 /* VideoFullscreenManagerProxy.h */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = sourcecode.c.h; path = VideoFullscreenManagerProxy.h; sourceTree = "<group>"; };
                 52D5A1AB1C57494E00DE34A3 /* VideoFullscreenManagerProxy.messages.in */ = {isa = PBXFileReference; fileEncoding = 4; lastKnownFileType = text; path = VideoFullscreenManagerProxy.messages.in; sourceTree = "<group>"; };
@@ -8741 +8755 @@
                         sourceTree = "<group>";
                 };
+                52CDC5BC2731DA0C00A3E3EB /* Virtual */ = {
+                        isa = PBXGroup;
+                        children = (
+                                52CDC5BD2731DA0C00A3E3EB /* VirtualAuthenticatorConfiguration.h */,
+                                52CDC5BF2731DA0C00A3E3EB /* VirtualAuthenticatorManager.cpp */,
+                                52CDC5C32731DA0C00A3E3EB /* VirtualAuthenticatorManager.h */,
+                                52CDC5C02731DA0C00A3E3EB /* VirtualLocalConnection.h */,
+                                52CDC5C22731DA0C00A3E3EB /* VirtualLocalConnection.mm */,
+                                52CDC5C12731DA0C00A3E3EB /* VirtualService.h */,
+                                52CDC5BE2731DA0C00A3E3EB /* VirtualService.mm */,
+                        );
+                        path = Virtual;
+                        sourceTree = "<group>";
+                };
                 5506409C240715AA00AAE045 /* graphics */ = {
                         isa = PBXGroup;
@@ -8940 +8968 @@
                                 57597EBF218184B20037F924 /* fido */,
                                 57DCEDBD214C9FA90016B847 /* Mock */,
+                                52CDC5BC2731DA0C00A3E3EB /* Virtual */,
                                 57DCEDA42149E64A0016B847 /* Authenticator.cpp */,
                                 57DCED8B21485BD70016B847 /* Authenticator.h */,
@@ -12336 +12365 @@
                                 2D6CD119189058A500E5A4A0 /* ViewSnapshotStore.h in Headers */,
                                 2684055318B86ED60022C38B /* ViewUpdateDispatcherMessages.h in Headers */,
+                                52CDC5C42731DA0D00A3E3EB /* VirtualAuthenticatorConfiguration.h in Headers */,
+                                52CDC5CA2731DA0D00A3E3EB /* VirtualAuthenticatorManager.h in Headers */,
+                                52CDC5C72731DA0D00A3E3EB /* VirtualLocalConnection.h in Headers */,
+                                52CDC5C82731DA0D00A3E3EB /* VirtualService.h in Headers */,
                                 2684054418B85A630022C38B /* VisibleContentRectUpdateInfo.h in Headers */,
                                 2DD5A7291EBF08D5009BA597 /* VisibleWebPageCounter.h in Headers */,
@@ -14391 +14424 @@
                                 2D819BA11862800E001F03D1 /* ViewGestureGeometryCollectorMessageReceiver.cpp in Sources */,
                                 2684055218B86ED60022C38B /* ViewUpdateDispatcherMessageReceiver.cpp in Sources */,
+                                52CDC5C62731DA0D00A3E3EB /* VirtualAuthenticatorManager.cpp in Sources */,
+                                52CDC5C92731DA0D00A3E3EB /* VirtualLocalConnection.mm in Sources */,
+                                52CDC5C52731DA0D00A3E3EB /* VirtualService.mm in Sources */,
                                 1A60224C18C16B9F00C3E8C9 /* VisitedLinkStoreMessageReceiver.cpp in Sources */,
                                 1A8E7D3C18C15149005A702A /* VisitedLinkTableControllerMessageReceiver.cpp in Sources */,