Changeset 153882 in webkit

Timestamp:

Aug 9, 2013 3:48:49 AM (11 years ago)

Author:

commit-queue@webkit.org

Message:

[GTK] [WebKit2] Add an 'authenticate' signal to WebKitWebView
​https://bugs.webkit.org/show_bug.cgi?id=99352

Patch by Brian Holt <​brian.holt@samsung.com> on 2013-08-09
Reviewed by Carlos Garcia Campos.

Add a new public class to the API, WebKitAuthenticationRequest, to be
emitted along with a new WebKitWebView::authenticate signal to
let client applications to provide their own authentication
when the user is challenged with HTTP authentication. The
credential is exposed through a new class WebKitCredential.

• GNUmakefile.list.am:
• UIProcess/API/gtk/WebKitAuthenticationDialog.cpp:

(okButtonClicked): Use new API for authentication.
(cancelButtonClicked): Ditto.
(webkitAuthenticationDialogInitialize):Get
authenticationChallenge from request object.
(webkitAuthenticationDialogNew): Ditto.

• UIProcess/API/gtk/WebKitAuthenticationDialog.h:
• UIProcess/API/gtk/WebKitAuthenticationRequest.cpp: Added new

class representing a HTTP authentication request.
(webkitAuthenticationRequestDispose):
(webkit_authentication_request_class_init):
(webkitAuthenticationRequestCreate):
(webkitAuthenticationRequestGetAuthenticationChallenge):
(webkit_authentication_request_can_save_credentials):
(webkit_authentication_request_get_proposed_credential):
(webkit_authentication_request_get_host):
(webkit_authentication_request_get_port):
(webkit_authentication_request_get_realm):
(webkit_authentication_request_get_scheme):
(webkit_authentication_request_is_for_proxy):
(webkit_authentication_request_is_retry):
(webkit_authentication_request_authenticate):
(webkit_authentication_request_cancel):

• UIProcess/API/gtk/WebKitAuthenticationRequest.h: Added.
• UIProcess/API/gtk/WebKitAuthenticationRequestPrivate.h: Added.
• UIProcess/API/gtk/WebKitCredential.cpp: Added new class to

support credentials for HTTP authentication.
(_WebKitCredential::_WebKitCredential):
(webkitCredentialCreate):
(webkitCredentialGetCredential):
(webkit_credential_new):
(webkit_credential_copy):
(webkit_credential_free):
(webkit_credential_get_username):
(webkit_credential_get_password):
(webkit_credential_has_password):
(webkit_credential_get_persistence):

• UIProcess/API/gtk/WebKitCredential.h: Added.
• UIProcess/API/gtk/WebKitCredentialPrivate.h: Added.
• UIProcess/API/gtk/WebKitWebView.cpp: Added authenticate signal.

(webkitWebViewAuthenticate): Default signal handler for authenticate.
(webkit_web_view_class_init): Ditto.
(webkitWebViewHandleAuthenticationChallenge): Create an
authentication request and emit it with authenticate signal.

• UIProcess/API/gtk/WebKitWebView.h: Replaced reserved function

pointer slot with for WebViewClass with function pointer to
authenticate signal handler.

• UIProcess/API/gtk/docs/webkit2gtk-docs.sgml: Added new section for

the authentication request.

• UIProcess/API/gtk/docs/webkit2gtk-sections.txt: Ditto.
• UIProcess/API/gtk/docs/webkit2gtk.types: Added authentication

request and credential types.

• UIProcess/API/gtk/tests/TestWebKitWebView.cpp: Created a new

unit test for HTTP authentication. A libsoup server callback
handler is installed that creates soup messages with appropriate
headers and body to test HTTP authentication.
(testWebViewAuthenticationRequest): Test the authentication
request and credential API.
(testWebViewAuthenticationCancel): Test cancelled authentication.
(testWebViewAuthenticationFailure): Test repeated authentication failures.
(testWebViewAuthenticationNoCredential): Test continue without
credentials.
(testWebViewAuthenticationStorage): Test credential storage.
(testWebViewAuthenticationSuccess): Test successful authentication.
(beforeAll): Added tests.

• UIProcess/API/gtk/webkit2.h: Added WebKitAuthenticationRequest and

WebKitCredential headers.

Location:

trunk/Source/WebKit2

Files:

• ChangeLog (modified) (1 diff)
• GNUmakefile.list.am (modified) (4 diffs)
• UIProcess/API/gtk/WebKitAuthenticationDialog.cpp (modified) (5 diffs)
• UIProcess/API/gtk/WebKitAuthenticationDialog.h (modified) (2 diffs)
• UIProcess/API/gtk/WebKitAuthenticationRequest.cpp (added)
• UIProcess/API/gtk/WebKitAuthenticationRequest.h (added)
• UIProcess/API/gtk/WebKitAuthenticationRequestPrivate.h (added)
• UIProcess/API/gtk/WebKitCredential.cpp (added)
• UIProcess/API/gtk/WebKitCredential.h (added)
• UIProcess/API/gtk/WebKitCredentialPrivate.h (added)
• UIProcess/API/gtk/WebKitWebView.cpp (modified) (6 diffs)
• UIProcess/API/gtk/WebKitWebView.h (modified) (3 diffs)
• UIProcess/API/gtk/docs/webkit2gtk-docs.sgml (modified) (2 diffs)
• UIProcess/API/gtk/docs/webkit2gtk-sections.txt (modified) (1 diff)
• UIProcess/API/gtk/docs/webkit2gtk.types (modified) (1 diff)
• UIProcess/API/gtk/tests/TestWebKitWebView.cpp (modified) (4 diffs)
• UIProcess/API/gtk/webkit2.h (modified) (2 diffs)

trunk/Source/WebKit2/ChangeLog

@@ +1 @@
+2013-08-09  Brian Holt  <brian.holt@samsung.com>
+
+        [GTK] [WebKit2] Add an 'authenticate' signal to WebKitWebView
+        https://bugs.webkit.org/show_bug.cgi?id=99352
+
+        Reviewed by Carlos Garcia Campos.
+
+        Add a new public class to the API, WebKitAuthenticationRequest, to be
+        emitted along with a new WebKitWebView::authenticate signal to
+        let client applications to provide their own authentication
+        when the user is challenged with HTTP authentication. The
+        credential is exposed through a new class WebKitCredential.
+
+        * GNUmakefile.list.am:
+        * UIProcess/API/gtk/WebKitAuthenticationDialog.cpp:
+        (okButtonClicked): Use new API for authentication.
+        (cancelButtonClicked): Ditto.
+        (webkitAuthenticationDialogInitialize):Get
+        authenticationChallenge from request object.
+        (webkitAuthenticationDialogNew): Ditto.
+        * UIProcess/API/gtk/WebKitAuthenticationDialog.h:
+        * UIProcess/API/gtk/WebKitAuthenticationRequest.cpp: Added new
+        class representing a HTTP authentication request.
+        (webkitAuthenticationRequestDispose):
+        (webkit_authentication_request_class_init):
+        (webkitAuthenticationRequestCreate):
+        (webkitAuthenticationRequestGetAuthenticationChallenge):
+        (webkit_authentication_request_can_save_credentials):
+        (webkit_authentication_request_get_proposed_credential):
+        (webkit_authentication_request_get_host):
+        (webkit_authentication_request_get_port):
+        (webkit_authentication_request_get_realm):
+        (webkit_authentication_request_get_scheme):
+        (webkit_authentication_request_is_for_proxy):
+        (webkit_authentication_request_is_retry):
+        (webkit_authentication_request_authenticate):
+        (webkit_authentication_request_cancel):
+        * UIProcess/API/gtk/WebKitAuthenticationRequest.h: Added.
+        * UIProcess/API/gtk/WebKitAuthenticationRequestPrivate.h: Added.
+        * UIProcess/API/gtk/WebKitCredential.cpp: Added new class to
+        support credentials for HTTP authentication.
+        (_WebKitCredential::_WebKitCredential):
+        (webkitCredentialCreate):
+        (webkitCredentialGetCredential):
+        (webkit_credential_new):
+        (webkit_credential_copy):
+        (webkit_credential_free):
+        (webkit_credential_get_username):
+        (webkit_credential_get_password):
+        (webkit_credential_has_password):
+        (webkit_credential_get_persistence):
+        * UIProcess/API/gtk/WebKitCredential.h: Added.
+        * UIProcess/API/gtk/WebKitCredentialPrivate.h: Added.
+        * UIProcess/API/gtk/WebKitWebView.cpp: Added authenticate signal.
+        (webkitWebViewAuthenticate): Default signal handler for authenticate.
+        (webkit_web_view_class_init): Ditto.
+        (webkitWebViewHandleAuthenticationChallenge): Create an
+        authentication request and emit it with authenticate signal.
+        * UIProcess/API/gtk/WebKitWebView.h: Replaced reserved function
+        pointer slot with for WebViewClass with function pointer to
+        authenticate signal handler.
+        * UIProcess/API/gtk/docs/webkit2gtk-docs.sgml: Added new section for
+        the authentication request.
+        * UIProcess/API/gtk/docs/webkit2gtk-sections.txt: Ditto.
+        * UIProcess/API/gtk/docs/webkit2gtk.types: Added authentication
+        request and credential types.
+        * UIProcess/API/gtk/tests/TestWebKitWebView.cpp: Created a new
+        unit test for HTTP authentication. A libsoup server callback
+        handler is installed that creates soup messages with appropriate
+        headers and body to test HTTP authentication.
+        (testWebViewAuthenticationRequest): Test the authentication
+        request and credential API.
+        (testWebViewAuthenticationCancel): Test cancelled authentication.
+        (testWebViewAuthenticationFailure): Test repeated authentication failures.
+        (testWebViewAuthenticationNoCredential): Test continue without
+        credentials.
+        (testWebViewAuthenticationStorage): Test credential storage.
+        (testWebViewAuthenticationSuccess): Test successful authentication.
+        (beforeAll): Added tests.
+        * UIProcess/API/gtk/webkit2.h: Added WebKitAuthenticationRequest and
+        WebKitCredential headers.
+
 2013-08-09  Tim Horton  <timothy_horton@apple.com>
 

trunk/Source/WebKit2/GNUmakefile.list.am

@@ -95 +95 @@
 
 webkit2gtk_h_api += \
+        $(WebKit2)/UIProcess/API/gtk/WebKitAuthenticationRequest.h \
         $(WebKit2)/UIProcess/API/gtk/WebKitBackForwardList.h \
         $(WebKit2)/UIProcess/API/gtk/WebKitBackForwardListItem.h \
@@ -101 +102 @@
         $(WebKit2)/UIProcess/API/gtk/WebKitContextMenuItem.h \
         $(WebKit2)/UIProcess/API/gtk/WebKitCookieManager.h \
+        $(WebKit2)/UIProcess/API/gtk/WebKitCredential.h \
         $(WebKit2)/UIProcess/API/gtk/WebKitDefines.h \
         $(WebKit2)/UIProcess/API/gtk/WebKitDownload.h \
@@ -654 +656 @@
         Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationDialog.cpp \
         Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationDialog.h \
+        Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationRequest.cpp \
+        Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationRequest.h \
+        Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationRequestPrivate.h \
         Source/WebKit2/UIProcess/API/gtk/WebKitBackForwardList.h \
         Source/WebKit2/UIProcess/API/gtk/WebKitBackForwardList.cpp \
@@ -673 +678 @@
         Source/WebKit2/UIProcess/API/gtk/WebKitCookieManager.cpp \
         Source/WebKit2/UIProcess/API/gtk/WebKitCookieManagerPrivate.h \
+        Source/WebKit2/UIProcess/API/gtk/WebKitCredential.cpp \
+        Source/WebKit2/UIProcess/API/gtk/WebKitCredential.h \
+        Source/WebKit2/UIProcess/API/gtk/WebKitCredentialPrivate.h \
         Source/WebKit2/UIProcess/API/gtk/WebKitDefines.h \
         Source/WebKit2/UIProcess/API/gtk/WebKitDownload.cpp \

trunk/Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationDialog.cpp

@@ -22 +22 @@
 
 #include "AuthenticationDecisionListener.h"
-#include "WebCredential.h"
+#include "WebKitAuthenticationRequestPrivate.h"
+#include "WebKitCredentialPrivate.h"
 #include "WebKitPrivate.h"
 
@@ -28 +29 @@
 
 struct _WebKitAuthenticationDialogPrivate {
-    RefPtr<AuthenticationChallengeProxy> authenticationChallenge;
-
+    GRefPtr<WebKitAuthenticationRequest> request;
     GtkWidget* authWidget;
     GtkWidget* defaultButton;
@@ -37 +37 @@
 WEBKIT_DEFINE_TYPE(WebKitAuthenticationDialog, webkit_authentication_dialog, GTK_TYPE_EVENT_BOX)
 
-static void webkitAuthenticationDialogAuthenticate(WebKitAuthenticationDialog* authDialog, WebCredential* credential)
-{
-    WebKitAuthenticationDialogPrivate* priv = authDialog->priv;
-    priv->authenticationChallenge->listener()->useCredential(credential);
-    gtk_widget_destroy(GTK_WIDGET(authDialog));
-}
-
 static void okButtonClicked(GtkButton*, WebKitAuthenticationDialog* authDialog)
 {
     WebKitAuthenticationDialogPrivate* priv = authDialog->priv;
-    RefPtr<WebCredential> webCredential = WebCredential::create(webkitAuthenticationWidgetCreateCredential(WEBKIT_AUTHENTICATION_WIDGET(priv->authWidget)));
-    webkitAuthenticationDialogAuthenticate(authDialog, webCredential.get());
+    WebKitCredential* credential = webkitCredentialCreate(webkitAuthenticationWidgetCreateCredential(WEBKIT_AUTHENTICATION_WIDGET(priv->authWidget)));
+    webkit_authentication_request_authenticate(priv->request.get(), credential);
+    webkit_credential_free(credential);
+    gtk_widget_destroy(GTK_WIDGET(authDialog));
 }
 
 static void cancelButtonClicked(GtkButton*, WebKitAuthenticationDialog* authDialog)
 {
-    webkitAuthenticationDialogAuthenticate(authDialog, 0);
+    webkit_authentication_request_authenticate(authDialog->priv->request.get(), 0);
+    gtk_widget_destroy(GTK_WIDGET(authDialog));
 }
 
@@ -81 +77 @@
     gtk_widget_show(button);
 
-    authDialog->priv->authWidget = webkitAuthenticationWidgetNew(authDialog->priv->authenticationChallenge->core(), credentialStorageMode);
+    authDialog->priv->authWidget = webkitAuthenticationWidgetNew(webkitAuthenticationRequestGetAuthenticationChallenge(authDialog->priv->request.get())->core(), credentialStorageMode);
     gtk_box_pack_start(GTK_BOX(vBox), authDialog->priv->authWidget, TRUE, TRUE, 0);
     gtk_widget_show(authDialog->priv->authWidget);
@@ -139 +135 @@
 }
 
-GtkWidget* webkitAuthenticationDialogNew(AuthenticationChallengeProxy* authenticationChallenge, CredentialStorageMode mode)
+GtkWidget* webkitAuthenticationDialogNew(WebKitAuthenticationRequest* request, CredentialStorageMode mode)
 {
     WebKitAuthenticationDialog* authDialog = WEBKIT_AUTHENTICATION_DIALOG(g_object_new(WEBKIT_TYPE_AUTHENTICATION_DIALOG, NULL));
-    authDialog->priv->authenticationChallenge = authenticationChallenge;
+    authDialog->priv->request = request;
     webkitAuthenticationDialogInitialize(authDialog, mode);
     return GTK_WIDGET(authDialog);

trunk/Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationDialog.h

@@ -21 +21 @@
 #define WebKitAuthenticationDialog_h
 
-#include "AuthenticationChallengeProxy.h"
+#include "WebKitAuthenticationRequest.h"
 #include "WebKitAuthenticationWidget.h"
 #include <gtk/gtk.h>
@@ -49 +49 @@
 
 GType webkit_authentication_dialog_get_type();
-GtkWidget* webkitAuthenticationDialogNew(WebKit::AuthenticationChallengeProxy*, CredentialStorageMode);
+GtkWidget* webkitAuthenticationDialogNew(WebKitAuthenticationRequest*, CredentialStorageMode);
 
 G_END_DECLS

trunk/Source/WebKit2/UIProcess/API/gtk/WebKitWebView.cpp

@@ -29 +29 @@
 #include "WebData.h"
 #include "WebKitAuthenticationDialog.h"
+#include "WebKitAuthenticationRequestPrivate.h"
 #include "WebKitBackForwardListPrivate.h"
 #include "WebKitContextMenuClient.h"
@@ -120 +121 @@
     WEB_PROCESS_CRASHED,
 
+    AUTHENTICATE,
+
     LAST_SIGNAL
 };
@@ -428 +431 @@
         g_signal_handler_disconnect(webkit_web_context_get_favicon_database(priv->context), priv->faviconChangedHandlerID);
     priv->faviconChangedHandlerID = 0;
+}
+
+static gboolean webkitWebViewAuthenticate(WebKitWebView* webView, WebKitAuthenticationRequest* request)
+{
+    CredentialStorageMode credentialStorageMode = webkit_authentication_request_can_save_credentials(request) ? AllowPersistentStorage : DisallowPersistentStorage;
+    webkitWebViewBaseAddAuthenticationDialog(WEBKIT_WEB_VIEW_BASE(webView), webkitAuthenticationDialogNew(request, credentialStorageMode));
+
+    return TRUE;
 }
 
@@ -606 +617 @@
     webViewClass->permission_request = webkitWebViewPermissionRequest;
     webViewClass->run_file_chooser = webkitWebViewRunFileChooser;
+    webViewClass->authenticate = webkitWebViewAuthenticate;
 
     /**
@@ -1367 +1379 @@
         webkit_marshal_BOOLEAN__VOID,
         G_TYPE_BOOLEAN, 0);
+
+    /**
+     * WebKitWebView::authenticate:
+     * @web_view: the #WebKitWebView on which the signal is emitted
+     * @request: a #WebKitAuthenticationRequest
+     *
+     * This signal is emitted when the user is challenged with HTTP
+     * authentication. To let the  application access or supply
+     * the credentials as well as to allow the client application
+     * to either cancel the request or perform the authentication,
+     * the signal will pass an instance of the
+     * #WebKitAuthenticationRequest in the @request argument.
+     * To handle this signal asynchronously you should keep a ref
+     * of the request and return %TRUE. To disable HTTP authentication
+     * entirely, connect to this signal and simply return %TRUE.
+     *
+     * The default signal handler will run a default authentication
+     * dialog asynchronously for the user to interact with.
+     *
+     * Returns: %TRUE to stop other handlers from being invoked for the event.
+     *   %FALSE to propagate the event further.
+     *
+     * Since: 2.2
+     */
+    signals[AUTHENTICATE] =
+        g_signal_new("authenticate",
+            G_TYPE_FROM_CLASS(webViewClass),
+            G_SIGNAL_RUN_LAST,
+            G_STRUCT_OFFSET(WebKitWebViewClass, authenticate),
+            g_signal_accumulator_true_handled, 0 /* accumulator data */,
+            webkit_marshal_BOOLEAN__OBJECT,
+            G_TYPE_BOOLEAN, 1, /* number of parameters */
+            WEBKIT_TYPE_AUTHENTICATION_REQUEST);
 }
 
@@ -1739 +1784 @@
 void webkitWebViewHandleAuthenticationChallenge(WebKitWebView* webView, AuthenticationChallengeProxy* authenticationChallenge)
 {
-    CredentialStorageMode credentialStorageMode;
-    if (webkit_settings_get_enable_private_browsing(webkit_web_view_get_settings(webView)))
-        credentialStorageMode = DisallowPersistentStorage;
-    else
-        credentialStorageMode = AllowPersistentStorage;
-
-    webkitWebViewBaseAddAuthenticationDialog(WEBKIT_WEB_VIEW_BASE(webView), webkitAuthenticationDialogNew(authenticationChallenge, credentialStorageMode));
+    gboolean privateBrowsingEnabled = webkit_settings_get_enable_private_browsing(webkit_web_view_get_settings(webView));
+    GRefPtr<WebKitAuthenticationRequest> request = adoptGRef(webkitAuthenticationRequestCreate(authenticationChallenge, privateBrowsingEnabled));
+    gboolean returnValue;
+    g_signal_emit(webView, signals[AUTHENTICATE], 0, request.get(), &returnValue);
 }
 

trunk/Source/WebKit2/UIProcess/API/gtk/WebKitWebView.h

@@ -30 +30 @@
 
 #include <JavaScriptCore/JSBase.h>
+#include <webkit2/WebKitAuthenticationRequest.h>
 #include <webkit2/WebKitBackForwardList.h>
 #include <webkit2/WebKitDefines.h>
@@ -243 +244 @@
     gboolean   (* web_process_crashed)       (WebKitWebView               *web_view);
 
+    gboolean   (* authenticate)              (WebKitWebView               *web_view,
+                                              WebKitAuthenticationRequest *request);
     void (*_webkit_reserved0) (void);
     void (*_webkit_reserved1) (void);
@@ -250 +253 @@
     void (*_webkit_reserved5) (void);
     void (*_webkit_reserved6) (void);
-    void (*_webkit_reserved7) (void);
 };
 

trunk/Source/WebKit2/UIProcess/API/gtk/docs/webkit2gtk-docs.sgml

@@ -14 +14 @@
     <xi:include href="xml/WebKitWebContext.xml"/>
     <xi:include href="xml/WebKitWebView.xml"/>
+    <xi:include href="xml/WebKitAuthenticationRequest.xml"/>
     <xi:include href="xml/WebKitBackForwardList.xml"/>
     <xi:include href="xml/WebKitBackForwardListItem.xml"/>
@@ -54 +55 @@
     <title>Index</title>
   </index>
+  
+  <index id="api-index-2-2" role="2.2">
+    <title>Index of new symbols in 2.2</title>
+    <xi:include href="xml/api-index-2.2.xml"><xi:fallback /></xi:include>
+  </index>  
+  
   <xi:include href="xml/annotation-glossary.xml"><xi:fallback /></xi:include>
 </book>

trunk/Source/WebKit2/UIProcess/API/gtk/docs/webkit2gtk-sections.txt

@@ -176 +176 @@
 webkit_script_dialog_get_type
 WebKitWebViewPrivate
+</SECTION>
+
+<SECTION>
+<FILE>WebKitAuthenticationRequest</FILE>
+WebKitAuthenticationRequest
+WebKitAuthenticationScheme
+webkit_authentication_request_authenticate
+webkit_authentication_request_cancel
+webkit_authentication_request_can_save_credentials
+webkit_authentication_request_get_host
+webkit_authentication_request_get_port
+webkit_authentication_request_is_retry
+webkit_authentication_request_get_proposed_credential
+webkit_authentication_request_get_realm
+webkit_authentication_request_get_scheme
+webkit_authentication_request_is_for_proxy
+
+<SUBSECTION Standard>
+WebKitAuthenticationRequestClass
+WEBKIT_TYPE_AUTHENTICATION_REQUEST
+WEBKIT_AUTHENTICATION_REQUEST
+WEBKIT_AUTHENTICATION_REQUEST_CLASS
+WEBKIT_AUTHENTICATION_REQUEST_GET_CLASS
+WEBKIT_IS_AUTHENTICATION_REQUEST
+WEBKIT_IS_AUTHENTICATION_REQUEST_CLASS
+WEBKIT_TYPE_CREDENTIAL
+
+<SUBSECTION Private>
+WebKitAuthenticationRequestPrivate
+webkit_authentication_request_get_type
+webkit_credential_get_type
+
+<SUBSECTION>
+WebKitCredential
+WebKitCredentialPersistence
+webkit_credential_new
+webkit_credential_copy
+webkit_credential_free
+webkit_credential_get_password
+webkit_credential_get_persistence
+webkit_credential_get_username
+webkit_credential_has_password
 </SECTION>
 

trunk/Source/WebKit2/UIProcess/API/gtk/docs/webkit2gtk.types

@@ -25 +25 @@
 webkit_web_extension_get_type
 webkit_web_page_get_type
+webkit_authentication_request_get_type
+webkit_credential_get_type

trunk/Source/WebKit2/UIProcess/API/gtk/tests/TestWebKitWebView.cpp

@@ -19 +19 @@
 
 #include "config.h"
+#include "LoadTrackingTest.h"
+#include "WebKitTestServer.h"
 #include "WebViewTest.h"
 #include <JavaScriptCore/JSStringRef.h>
@@ -26 +28 @@
 #include <wtf/gobject/GRefPtr.h>
 #include <wtf/text/StringHash.h>
+
+static WebKitTestServer* kServer;
 
 static void testWebViewDefaultContext(WebViewTest* test, gconstpointer)
@@ -1230 +1234 @@
 }
 
+class AuthenticationTest: public LoadTrackingTest {
+public:
+    MAKE_GLIB_TEST_FIXTURE(AuthenticationTest);
+
+    AuthenticationTest()
+    {
+        g_signal_connect(m_webView, "authenticate", G_CALLBACK(runAuthenticationCallback), this);
+    }
+
+    ~AuthenticationTest()
+    {
+        g_signal_handlers_disconnect_matched(m_webView, G_SIGNAL_MATCH_DATA, 0, 0, 0, 0, this);
+    }
+
+    static int authenticationRetries;
+
+    void loadURI(const char* uri)
+    {
+        // Reset the retry count of the fake server when a page is loaded.
+        authenticationRetries = 0;
+        LoadTrackingTest::loadURI(uri);
+    }
+
+    static gboolean runAuthenticationCallback(WebKitWebView*, WebKitAuthenticationRequest* request, AuthenticationTest* test)
+    {
+        test->runAuthentication(request);
+        return TRUE;
+    }
+
+    void runAuthentication(WebKitAuthenticationRequest* request)
+    {
+        assertObjectIsDeletedWhenTestFinishes(G_OBJECT(request));
+        m_authenticationRequest = request;
+        g_main_loop_quit(m_mainLoop);
+    }
+
+    WebKitAuthenticationRequest* waitForAuthenticationRequest()
+    {
+        g_main_loop_run(m_mainLoop);
+        return m_authenticationRequest.get();
+    }
+
+private:
+    GRefPtr<WebKitAuthenticationRequest> m_authenticationRequest;
+};
+
+int AuthenticationTest::authenticationRetries = 0;
+
+static const char authTestUsername[] = "username";
+static const char authTestPassword[] = "password";
+static const char authExpectedSuccessTitle[] = "WebKit2Gtk+ Authentication test";
+static const char authExpectedFailureTitle[] = "401 Authorization Required";
+static const char authExpectedAuthorization[] = "Basic dXNlcm5hbWU6cGFzc3dvcmQ="; // Base64 encoding of "username:password".
+static const char authSuccessHTMLString[] =
+    "<html>"
+    "<head><title>WebKit2Gtk+ Authentication test</title></head>"
+    "<body></body></html>";
+static const char authFailureHTMLString[] =
+    "<html>"
+    "<head><title>401 Authorization Required</title></head>"
+    "<body></body></html>";
+
+static void testWebViewAuthenticationRequest(AuthenticationTest* test, gconstpointer)
+{
+    // Test authentication request getters match soup authentication header.
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    WebKitAuthenticationRequest* request = test->waitForAuthenticationRequest();
+    g_assert_cmpstr(webkit_authentication_request_get_host(request), ==, soup_uri_get_host(kServer->baseURI()));
+    g_assert_cmpuint(webkit_authentication_request_get_port(request), ==, soup_uri_get_port(kServer->baseURI()));
+    g_assert_cmpstr(webkit_authentication_request_get_realm(request), ==, "my realm");
+    g_assert(webkit_authentication_request_get_scheme(request) == WEBKIT_AUTHENTICATION_SCHEME_HTTP_BASIC);
+    g_assert(!webkit_authentication_request_is_for_proxy(request));
+    g_assert(!webkit_authentication_request_is_retry(request));
+}
+
+static void testWebViewAuthenticationCancel(AuthenticationTest* test, gconstpointer)
+{
+    // Test cancel.
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    WebKitAuthenticationRequest* request = test->waitForAuthenticationRequest();
+    webkit_authentication_request_cancel(request);
+    // Server doesn't ask for new credentials.
+    test->waitUntilLoadFinished();
+
+    g_assert_cmpint(test->m_loadEvents.size(), ==, 3);
+    g_assert_cmpint(test->m_loadEvents[0], ==, LoadTrackingTest::ProvisionalLoadStarted);
+    g_assert_cmpint(test->m_loadEvents[1], ==, LoadTrackingTest::ProvisionalLoadFailed);
+    g_assert_cmpint(test->m_loadEvents[2], ==, LoadTrackingTest::LoadFinished);
+
+    g_assert_error(test->m_error.get(), WEBKIT_NETWORK_ERROR, WEBKIT_NETWORK_ERROR_CANCELLED);
+}
+
+static void testWebViewAuthenticationFailure(AuthenticationTest* test, gconstpointer)
+{
+    // Test authentication failures.
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    WebKitAuthenticationRequest* request = test->waitForAuthenticationRequest();
+    g_assert(!webkit_authentication_request_is_retry(request));
+    WebKitCredential* credential = webkit_credential_new(authTestUsername, "wrongpassword", WEBKIT_CREDENTIAL_PERSISTENCE_NONE);
+    webkit_authentication_request_authenticate(request, credential);
+    webkit_credential_free(credential);
+    // Expect a second authentication request.
+    request = test->waitForAuthenticationRequest();
+    g_assert(webkit_authentication_request_is_retry(request));
+    // Test second failure.
+    credential = webkit_credential_new(authTestUsername, "wrongpassword2", WEBKIT_CREDENTIAL_PERSISTENCE_NONE);
+    webkit_authentication_request_authenticate(request, credential);
+    webkit_credential_free(credential);
+    // Expect authentication failed page.
+    test->waitUntilLoadFinished();
+
+    g_assert_cmpint(test->m_loadEvents.size(), ==, 3);
+    g_assert_cmpint(test->m_loadEvents[0], ==, LoadTrackingTest::ProvisionalLoadStarted);
+    g_assert_cmpint(test->m_loadEvents[1], ==, LoadTrackingTest::LoadCommitted);
+    g_assert_cmpint(test->m_loadEvents[2], ==, LoadTrackingTest::LoadFinished);
+    g_assert_cmpstr(webkit_web_view_get_title(test->m_webView), ==, authExpectedFailureTitle);
+}
+
+static void testWebViewAuthenticationNoCredential(AuthenticationTest* test, gconstpointer)
+{
+    // Test continue without credentials.
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    WebKitAuthenticationRequest* request = test->waitForAuthenticationRequest();
+    webkit_authentication_request_authenticate(request, 0);
+    // Server doesn't ask for new credentials.
+    test->waitUntilLoadFinished();
+
+    g_assert_cmpint(test->m_loadEvents.size(), ==, 3);
+    g_assert_cmpint(test->m_loadEvents[0], ==, LoadTrackingTest::ProvisionalLoadStarted);
+    g_assert_cmpint(test->m_loadEvents[1], ==, LoadTrackingTest::LoadCommitted);
+    g_assert_cmpint(test->m_loadEvents[2], ==, LoadTrackingTest::LoadFinished);
+    g_assert_cmpstr(webkit_web_view_get_title(test->m_webView), ==, authExpectedFailureTitle);
+}
+
+static void testWebViewAuthenticationStorage(AuthenticationTest* test, gconstpointer)
+{
+    // Enable private browsing before authentication request to test that credentials can't be saved.
+    webkit_settings_set_enable_private_browsing(webkit_web_view_get_settings(test->m_webView), TRUE);
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    WebKitAuthenticationRequest* request = test->waitForAuthenticationRequest();
+    g_assert(!webkit_authentication_request_get_proposed_credential(request));
+    g_assert(!webkit_authentication_request_can_save_credentials(request));
+
+    // If WebKit has been compiled with libsecret, and private browsing is disabled
+    // then check that credentials can be saved.
+#if ENABLE(CREDENTIAL_STORAGE)
+    webkit_settings_set_enable_private_browsing(webkit_web_view_get_settings(test->m_webView), FALSE);
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    request = test->waitForAuthenticationRequest();
+    g_assert(!webkit_authentication_request_get_proposed_credential(request));
+    g_assert(webkit_authentication_request_can_save_credentials(request));
+#endif
+}
+
+static void testWebViewAuthenticationSuccess(AuthenticationTest* test, gconstpointer)
+{
+    // Test correct authentication.
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    WebKitAuthenticationRequest* request = test->waitForAuthenticationRequest();
+    WebKitCredential* credential = webkit_credential_new(authTestUsername, authTestPassword, WEBKIT_CREDENTIAL_PERSISTENCE_FOR_SESSION);
+    webkit_authentication_request_authenticate(request, credential);
+    webkit_credential_free(credential);
+    test->waitUntilLoadFinished();
+
+    g_assert_cmpint(test->m_loadEvents.size(), ==, 3);
+    g_assert_cmpint(test->m_loadEvents[0], ==, LoadTrackingTest::ProvisionalLoadStarted);
+    g_assert_cmpint(test->m_loadEvents[1], ==, LoadTrackingTest::LoadCommitted);
+    g_assert_cmpint(test->m_loadEvents[2], ==, LoadTrackingTest::LoadFinished);
+    g_assert_cmpstr(webkit_web_view_get_title(test->m_webView), ==, authExpectedSuccessTitle);
+
+    // Test loading the same (authorized) page again.
+    test->loadURI(kServer->getURIForPath("/auth-test.html").data());
+    // There is no authentication challenge.
+    test->waitUntilLoadFinished();
+
+    g_assert_cmpint(test->m_loadEvents.size(), ==, 3);
+    g_assert_cmpint(test->m_loadEvents[0], ==, LoadTrackingTest::ProvisionalLoadStarted);
+    g_assert_cmpint(test->m_loadEvents[1], ==, LoadTrackingTest::LoadCommitted);
+    g_assert_cmpint(test->m_loadEvents[2], ==, LoadTrackingTest::LoadFinished);
+    g_assert_cmpstr(webkit_web_view_get_title(test->m_webView), ==, authExpectedSuccessTitle);
+}
+
+static void serverCallback(SoupServer*, SoupMessage* message, const char* path, GHashTable*, SoupClientContext*, void*)
+{
+    if (message->method != SOUP_METHOD_GET) {
+        soup_message_set_status(message, SOUP_STATUS_NOT_IMPLEMENTED);
+        return;
+    }
+
+    if (!strcmp(path, "/auth-test.html")) {
+        const char* authorization = soup_message_headers_get_one(message->request_headers, "Authorization");
+        // Require authentication.
+        if (!g_strcmp0(authorization, authExpectedAuthorization)) {
+            // Successful authentication.
+            soup_message_set_status(message, SOUP_STATUS_OK);
+            soup_message_body_append(message->response_body, SOUP_MEMORY_STATIC, authSuccessHTMLString, strlen(authSuccessHTMLString));
+            AuthenticationTest::authenticationRetries = 0;
+        } else if (++AuthenticationTest::authenticationRetries < 3) {
+            // No or invalid authorization header provided by the client, request authentication twice then fail.
+            soup_message_set_status(message, SOUP_STATUS_UNAUTHORIZED);
+            soup_message_headers_append(message->response_headers, "WWW-Authenticate", "Basic realm=\"my realm\"");
+            // Include a failure message in case the user attempts to proceed without authentication.
+            soup_message_body_append(message->response_body, SOUP_MEMORY_STATIC, authFailureHTMLString, strlen(authFailureHTMLString));
+        } else {
+            // Authentication not successful, display a "401 Authorization Required" page.
+            soup_message_set_status(message, SOUP_STATUS_OK);
+            soup_message_body_append(message->response_body, SOUP_MEMORY_STATIC, authFailureHTMLString, strlen(authFailureHTMLString));
+        }
+    } else
+        soup_message_set_status(message, SOUP_STATUS_NOT_FOUND);
+
+    soup_message_body_complete(message->response_body);
+}
+
 void beforeAll()
 {
+    kServer = new WebKitTestServer();
+    kServer->run(serverCallback);
+
     WebViewTest::add("WebKitWebView", "default-context", testWebViewDefaultContext);
     WebViewTest::add("WebKitWebView", "custom-charset", testWebViewCustomCharset);
@@ -1252 +1473 @@
     SnapshotWebViewTest::add("WebKitWebView", "snapshot", testWebViewSnapshot);
     WebViewTest::add("WebKitWebView", "page-visibility", testWebViewPageVisibility);
+    AuthenticationTest::add("WebKitWebView", "authentication-request", testWebViewAuthenticationRequest);
+    AuthenticationTest::add("WebKitWebView", "authentication-cancel", testWebViewAuthenticationCancel);
+    AuthenticationTest::add("WebKitWebView", "authentication-failure", testWebViewAuthenticationFailure);
+    AuthenticationTest::add("WebKitWebView", "authentication-no-credential", testWebViewAuthenticationNoCredential);
+    AuthenticationTest::add("WebKitWebView", "authentication-storage", testWebViewAuthenticationStorage);
+    // Testing authentication success must be done last because libsoup will never fire
+    // the authenticate signal again once authentication is successful.
+    AuthenticationTest::add("WebKitWebView", "authentication-success", testWebViewAuthenticationSuccess);
 }
 
 void afterAll()
 {
-}
+    delete kServer;
+}

trunk/Source/WebKit2/UIProcess/API/gtk/webkit2.h

@@ -24 +24 @@
 #define __WEBKIT2_H_INSIDE__
 
+#include <webkit2/WebKitAuthenticationRequest.h>
 #include <webkit2/WebKitBackForwardList.h>
 #include <webkit2/WebKitBackForwardListItem.h>
@@ -30 +31 @@
 #include <webkit2/WebKitContextMenuItem.h>
 #include <webkit2/WebKitCookieManager.h>
+#include <webkit2/WebKitCredential.h>
 #include <webkit2/WebKitDefines.h>
 #include <webkit2/WebKitDownload.h>