Changeset 206731 in webkit

Timestamp:

Oct 3, 2016 3:32:52 AM (8 years ago)

Author:

Carlos Garcia Campos

Message:

[SOUP] Cleanup persistent credential storage code
​https://bugs.webkit.org/show_bug.cgi?id=162777

Reviewed by Alex Christensen.

.:

Remove ENABLE(CREDENTIAL_STORAGE) build flag and replace it by USE(LIBSECRET).

• Source/cmake/OptionsGTK.cmake:
• Source/cmake/WebKitFeatures.cmake:

Source/WebCore:

We have this feature behind ENABLE_CREDENTIAL_STORAGE flag, which is confusing, because we use credential
storage unconditionally and this is only about persistent storage. Also the flag assumes libsecret is available,
and since it's only used by GTK sometimes we use GTK ifdefs instead of CREDENTIAL_STORAGE. So, I think we should
use USE(LIBSECRET) instead, and reduce a bit the ifdefs in common soup code. Another problem is that current
implementation is always used, while it should depend on the current network storage session and never used in
ephemeral sessions. This patch moves the code from CredentialBackingStore to NetworkStorageSessionSoup and
modernizes a bit.

• PlatformGTK.cmake: Remove CredentialBackingStore.cpp.
• platform/gtk/GRefPtrGtk.cpp: Use USE(LIBSECRET)
• platform/gtk/GRefPtrGtk.h:
• platform/network/NetworkStorageSession.h:
• platform/network/ResourceHandleInternal.h:
• platform/network/gtk/CredentialBackingStore.cpp: Removed.
• platform/network/gtk/CredentialBackingStore.h: Removed.
• platform/network/soup/NetworkStorageSessionSoup.cpp:

(WebCore::NetworkStorageSession::~NetworkStorageSession):
(WebCore::schemeFromProtectionSpaceServerType):
(WebCore::authTypeFromProtectionSpaceAuthenticationScheme):
(WebCore::NetworkStorageSession::getCredentialFromPersistentStorage):
(WebCore::NetworkStorageSession::saveCredentialToPersistentStorage):
(WebCore::NetworkStorageSession::ensurePrivateBrowsingSession): Deleted.
(WebCore::NetworkStorageSession::switchToNewTestingSession): Deleted.

• platform/network/soup/ResourceHandleSoup.cpp:

(WebCore::gotHeadersCallback):
(WebCore::ResourceHandle::didReceiveAuthenticationChallenge):
(WebCore::ResourceHandle::receivedCredential):
(WebCore::ResourceHandle::continueDidReceiveAuthenticationChallenge): Deleted.
(WebCore::ResourceHandle::receivedRequestToContinueWithoutCredential): Deleted.
(WebCore::ResourceHandle::receivedCancellation): Deleted.

Source/WebKit2:

Use USE(LIBSECRET) instead of ENABLE(CREDENTIAL_STORAGE).

• UIProcess/API/gtk/WebKitAuthenticationRequest.cpp:

(webkit_authentication_request_can_save_credentials):

Tools:

Use USE(LIBSECRET) instead of ENABLE(CREDENTIAL_STORAGE).

• TestWebKitAPI/Tests/WebKit2Gtk/TestAuthentication.cpp:

(testWebViewAuthenticationStorage):

Location:

trunk

Files:

• ChangeLog (modified) (1 diff)
• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/PlatformGTK.cmake (modified) (1 diff)
• Source/WebCore/platform/gtk/GRefPtrGtk.cpp (modified) (2 diffs)
• Source/WebCore/platform/gtk/GRefPtrGtk.h (modified) (1 diff)
• Source/WebCore/platform/network/NetworkStorageSession.h (modified) (3 diffs)
• Source/WebCore/platform/network/ResourceHandleInternal.h (modified) (1 diff)
• Source/WebCore/platform/network/gtk (deleted)
• Source/WebCore/platform/network/soup/NetworkStorageSessionSoup.cpp (modified) (4 diffs)
• Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp (modified) (6 diffs)
• Source/WebKit2/ChangeLog (modified) (1 diff)
• Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationRequest.cpp (modified) (1 diff)
• Source/cmake/OptionsGTK.cmake (modified) (3 diffs)
• Source/cmake/WebKitFeatures.cmake (modified) (1 diff)
• Tools/ChangeLog (modified) (1 diff)
• Tools/TestWebKitAPI/Tests/WebKit2Gtk/TestAuthentication.cpp (modified) (1 diff)

trunk/ChangeLog

@@ +1 @@
+2016-10-03  Carlos Garcia Campos  <cgarcia@igalia.com>
+
+        [SOUP] Cleanup persistent credential storage code
+        https://bugs.webkit.org/show_bug.cgi?id=162777
+
+        Reviewed by Alex Christensen.
+
+        Remove ENABLE(CREDENTIAL_STORAGE) build flag and replace it by USE(LIBSECRET).
+
+        * Source/cmake/OptionsGTK.cmake:
+        * Source/cmake/WebKitFeatures.cmake:
+
 2016-09-29  Aaron Chu  <aaron_chu@apple.com>
 

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2016-10-03  Carlos Garcia Campos  <cgarcia@igalia.com>
+
+        [SOUP] Cleanup persistent credential storage code
+        https://bugs.webkit.org/show_bug.cgi?id=162777
+
+        Reviewed by Alex Christensen.
+
+        We have this feature behind ENABLE_CREDENTIAL_STORAGE flag, which is confusing, because we use credential
+        storage unconditionally and this is only about persistent storage. Also the flag assumes libsecret is available,
+        and since it's only used by GTK sometimes we use GTK ifdefs instead of CREDENTIAL_STORAGE. So, I think we should
+        use USE(LIBSECRET) instead, and reduce a bit the ifdefs in common soup code. Another problem is that current
+        implementation is always used, while it should depend on the current network storage session and never used in
+        ephemeral sessions. This patch moves the code from CredentialBackingStore to NetworkStorageSessionSoup and
+        modernizes a bit.
+
+        * PlatformGTK.cmake: Remove CredentialBackingStore.cpp.
+        * platform/gtk/GRefPtrGtk.cpp: Use USE(LIBSECRET)
+        * platform/gtk/GRefPtrGtk.h:
+        * platform/network/NetworkStorageSession.h:
+        * platform/network/ResourceHandleInternal.h:
+        * platform/network/gtk/CredentialBackingStore.cpp: Removed.
+        * platform/network/gtk/CredentialBackingStore.h: Removed.
+        * platform/network/soup/NetworkStorageSessionSoup.cpp:
+        (WebCore::NetworkStorageSession::~NetworkStorageSession):
+        (WebCore::schemeFromProtectionSpaceServerType):
+        (WebCore::authTypeFromProtectionSpaceAuthenticationScheme):
+        (WebCore::NetworkStorageSession::getCredentialFromPersistentStorage):
+        (WebCore::NetworkStorageSession::saveCredentialToPersistentStorage):
+        (WebCore::NetworkStorageSession::ensurePrivateBrowsingSession): Deleted.
+        (WebCore::NetworkStorageSession::switchToNewTestingSession): Deleted.
+        * platform/network/soup/ResourceHandleSoup.cpp:
+        (WebCore::gotHeadersCallback):
+        (WebCore::ResourceHandle::didReceiveAuthenticationChallenge):
+        (WebCore::ResourceHandle::receivedCredential):
+        (WebCore::ResourceHandle::continueDidReceiveAuthenticationChallenge): Deleted.
+        (WebCore::ResourceHandle::receivedRequestToContinueWithoutCredential): Deleted.
+        (WebCore::ResourceHandle::receivedCancellation): Deleted.
+
 2016-10-03  Carlos Garcia Campos  <cgarcia@igalia.com>
 

trunk/Source/WebCore/PlatformGTK.cmake

@@ -163 +163 @@
     platform/mediastream/gtk/SDPProcessorScriptResourceGtk.cpp
 
-    platform/network/gtk/CredentialBackingStore.cpp
-
     platform/network/soup/AuthenticationChallengeSoup.cpp
     platform/network/soup/CertificateInfo.cpp

trunk/Source/WebCore/platform/gtk/GRefPtrGtk.cpp

@@ -24 +24 @@
 #include <gtk/gtk.h>
 
-#if ENABLE(CREDENTIAL_STORAGE)
+#if USE(LIBSECRET)
 #define SECRET_WITH_UNSTABLE 1
 #define SECRET_API_SUBJECT_TO_CHANGE 1
@@ -45 +45 @@
 }
 
-#if ENABLE(CREDENTIAL_STORAGE)
+#if USE(LIBSECRET)
 template <> SecretValue* refGPtr(SecretValue* ptr)
 {

trunk/Source/WebCore/platform/gtk/GRefPtrGtk.h

@@ -32 +32 @@
 template <> void derefGPtr(GtkTargetList* ptr);
 
-#if ENABLE(CREDENTIAL_STORAGE)
+#if USE(LIBSECRET)
 template <> SecretValue* refGPtr(SecretValue* ptr);
 template <> void derefGPtr(SecretValue* ptr);

trunk/Source/WebCore/platform/network/NetworkStorageSession.h

@@ -35 +35 @@
 #endif
 
+#if USE(SOUP)
+#include <wtf/Function.h>
+#include <wtf/glib/GRefPtr.h>
+#endif
+
 namespace WebCore {
 
@@ -67 +72 @@
 
     SoupNetworkSession& soupNetworkSession() const;
-    void setSoupNetworkSession(std::unique_ptr<SoupNetworkSession>);
+    void getCredentialFromPersistentStorage(const ProtectionSpace&, Function<void (Credential&&)> completionHandler);
+    void saveCredentialToPersistentStorage(const ProtectionSpace&, const Credential&);
 #else
     NetworkStorageSession(SessionID, NetworkingContext*);
@@ -83 +89 @@
 #elif USE(SOUP)
     std::unique_ptr<SoupNetworkSession> m_session;
+#if USE(LIBSECRET)
+    Function<void (Credential&&)> m_persisentStorageCompletionHandler;
+    GRefPtr<GCancellable> m_persisentStorageCancellable;
+#endif
 #else
     RefPtr<NetworkingContext> m_context;

trunk/Source/WebCore/platform/network/ResourceHandleInternal.h

@@ -179 +179 @@
         size_t m_previousPosition;
         bool m_useAuthenticationManager;
-#endif
-#if PLATFORM(GTK)
         struct {
             Credential credential;
-            AuthenticationChallenge challenge;
+            ProtectionSpace protectionSpace;
         } m_credentialDataToSaveInPersistentStore;
 #endif

trunk/Source/WebCore/platform/network/soup/NetworkStorageSessionSoup.cpp

@@ -2 +2 @@
  * Copyright (C) 2013 Apple Inc. All rights reserved.
  * Copyright (C) 2013 University of Szeged. All rights reserved.
+ * Copyright (C) 2016 Igalia S.L.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -32 +33 @@
 #include "ResourceHandle.h"
 #include "SoupNetworkSession.h"
+#include <libsoup/soup.h>
 #include <wtf/MainThread.h>
 #include <wtf/NeverDestroyed.h>
+#include <wtf/glib/GUniquePtr.h>
+
+#if USE(LIBSECRET)
+#include "GRefPtrGtk.h"
+#include <glib/gi18n-lib.h>
+#define SECRET_WITH_UNSTABLE 1
+#define SECRET_API_SUBJECT_TO_CHANGE 1
+#include <libsecret/secret.h>
+#endif
 
 namespace WebCore {
@@ -45 +56 @@
 NetworkStorageSession::~NetworkStorageSession()
 {
+#if USE(LIBSECRET)
+    g_cancellable_cancel(m_persisentStorageCancellable.get());
+#endif
 }
 
@@ -79 +93 @@
 }
 
-void NetworkStorageSession::setSoupNetworkSession(std::unique_ptr<SoupNetworkSession> session)
-{
-    m_session = WTFMove(session);
-}
-
-}
-
-#endif
+#if USE(LIBSECRET)
+static const char* schemeFromProtectionSpaceServerType(ProtectionSpaceServerType serverType)
+{
+    switch (serverType) {
+    case ProtectionSpaceServerHTTP:
+    case ProtectionSpaceProxyHTTP:
+        return SOUP_URI_SCHEME_HTTP;
+    case ProtectionSpaceServerHTTPS:
+    case ProtectionSpaceProxyHTTPS:
+        return SOUP_URI_SCHEME_HTTPS;
+    case ProtectionSpaceServerFTP:
+    case ProtectionSpaceProxyFTP:
+        return SOUP_URI_SCHEME_FTP;
+    case ProtectionSpaceServerFTPS:
+    case ProtectionSpaceProxySOCKS:
+        break;
+    }
+
+    ASSERT_NOT_REACHED();
+    return SOUP_URI_SCHEME_HTTP;
+}
+
+static const char* authTypeFromProtectionSpaceAuthenticationScheme(ProtectionSpaceAuthenticationScheme scheme)
+{
+    switch (scheme) {
+    case ProtectionSpaceAuthenticationSchemeDefault:
+    case ProtectionSpaceAuthenticationSchemeHTTPBasic:
+        return "Basic";
+    case ProtectionSpaceAuthenticationSchemeHTTPDigest:
+        return "Digest";
+    case ProtectionSpaceAuthenticationSchemeNTLM:
+        return "NTLM";
+    case ProtectionSpaceAuthenticationSchemeNegotiate:
+        return "Negotiate";
+    case ProtectionSpaceAuthenticationSchemeHTMLForm:
+    case ProtectionSpaceAuthenticationSchemeClientCertificateRequested:
+    case ProtectionSpaceAuthenticationSchemeServerTrustEvaluationRequested:
+        ASSERT_NOT_REACHED();
+        break;
+    case ProtectionSpaceAuthenticationSchemeUnknown:
+        return "unknown";
+    }
+
+    ASSERT_NOT_REACHED();
+    return "unknown";
+}
+#endif // USE(LIBSECRET)
+
+void NetworkStorageSession::getCredentialFromPersistentStorage(const ProtectionSpace& protectionSpace, Function<void (Credential&&)> completionHandler)
+{
+#if USE(LIBSECRET)
+    if (m_sessionID.isEphemeral()) {
+        completionHandler({ });
+        return;
+    }
+
+    const String& realm = protectionSpace.realm();
+    if (realm.isEmpty()) {
+        completionHandler({ });
+        return;
+    }
+
+    GRefPtr<GHashTable> attributes = adoptGRef(secret_attributes_build(SECRET_SCHEMA_COMPAT_NETWORK,
+        "domain", realm.utf8().data(),
+        "server", protectionSpace.host().utf8().data(),
+        "port", protectionSpace.port(),
+        "protocol", schemeFromProtectionSpaceServerType(protectionSpace.serverType()),
+        "authtype", authTypeFromProtectionSpaceAuthenticationScheme(protectionSpace.authenticationScheme()),
+        nullptr));
+    if (!attributes) {
+        completionHandler({ });
+        return;
+    }
+
+    m_persisentStorageCancellable = adoptGRef(g_cancellable_new());
+    m_persisentStorageCompletionHandler = WTFMove(completionHandler);
+    secret_service_search(nullptr, SECRET_SCHEMA_COMPAT_NETWORK, attributes.get(),
+        static_cast<SecretSearchFlags>(SECRET_SEARCH_UNLOCK | SECRET_SEARCH_LOAD_SECRETS), m_persisentStorageCancellable.get(),
+        [](GObject* source, GAsyncResult* result, gpointer userData) {
+            GUniqueOutPtr<GError> error;
+            GUniquePtr<GList> elements(secret_service_search_finish(SECRET_SERVICE(source), result, &error.outPtr()));
+            if (g_error_matches (error.get(), G_IO_ERROR, G_IO_ERROR_CANCELLED))
+                return;
+
+            NetworkStorageSession* session = static_cast<NetworkStorageSession*>(userData);
+            auto completionHandler = std::exchange(session->m_persisentStorageCompletionHandler, nullptr);
+            if (error || !elements || !elements->data) {
+                completionHandler({ });
+                return;
+            }
+
+            GRefPtr<SecretItem> secretItem = adoptGRef(static_cast<SecretItem*>(elements->data));
+            GRefPtr<GHashTable> attributes = adoptGRef(secret_item_get_attributes(secretItem.get()));
+            String user = String::fromUTF8(static_cast<const char*>(g_hash_table_lookup(attributes.get(), "user")));
+            if (user.isEmpty()) {
+                completionHandler({ });
+                return;
+            }
+
+            size_t length;
+            GRefPtr<SecretValue> secretValue = adoptGRef(secret_item_get_secret(secretItem.get()));
+            const char* passwordData = secret_value_get(secretValue.get(), &length);
+            completionHandler(Credential(user, String::fromUTF8(passwordData, length), CredentialPersistencePermanent));
+    }, this);
+#else
+    UNUSED_PARAM(protectionSpace);
+    completionHandler({ });
+#endif
+}
+
+void NetworkStorageSession::saveCredentialToPersistentStorage(const ProtectionSpace& protectionSpace, const Credential& credential)
+{
+#if USE(LIBSECRET)
+    if (m_sessionID.isEphemeral())
+        return;
+
+    if (credential.isEmpty())
+        return;
+
+    const String& realm = protectionSpace.realm();
+    if (realm.isEmpty())
+        return;
+
+    GRefPtr<GHashTable> attributes = adoptGRef(secret_attributes_build(SECRET_SCHEMA_COMPAT_NETWORK,
+        "domain", realm.utf8().data(),
+        "server", protectionSpace.host().utf8().data(),
+        "port", protectionSpace.port(),
+        "protocol", schemeFromProtectionSpaceServerType(protectionSpace.serverType()),
+        "authtype", authTypeFromProtectionSpaceAuthenticationScheme(protectionSpace.authenticationScheme()),
+        nullptr));
+    if (!attributes)
+        return;
+
+    g_hash_table_insert(attributes.get(), g_strdup("user"), g_strdup(credential.user().utf8().data()));
+    CString utf8Password = credential.password().utf8();
+    GRefPtr<SecretValue> newSecretValue = adoptGRef(secret_value_new(utf8Password.data(), utf8Password.length(), "text/plain"));
+    secret_service_store(nullptr, SECRET_SCHEMA_COMPAT_NETWORK, attributes.get(), SECRET_COLLECTION_DEFAULT, _("WebKitGTK+ password"),
+        newSecretValue.get(), nullptr, nullptr, nullptr);
+#else
+    UNUSED_PARAM(protectionSpace);
+    UNUSED_PARAM(credential);
+#endif
+}
+
+} // namespace WebCore
+
+#endif // USE(SOUP)

trunk/Source/WebCore/platform/network/soup/ResourceHandleSoup.cpp

@@ -67 +67 @@
 #include "BlobRegistryImpl.h"
 
-#if PLATFORM(GTK)
-#include "CredentialBackingStore.h"
-#endif
-
 namespace WebCore {
 
@@ -231 +227 @@
     ResourceHandleInternal* d = handle->getInternal();
 
-#if PLATFORM(GTK)
     // We are a bit more conservative with the persistent credential storage than the session store,
     // since we are waiting until we know that this authentication succeeded before actually storing.
     // This is because we want to avoid hitting the disk twice (once to add and once to remove) for
     // incorrect credentials or polluting the keychain with invalid credentials.
-    if (!isAuthenticationFailureStatusCode(message->status_code) && message->status_code < 500 && !d->m_credentialDataToSaveInPersistentStore.credential.isEmpty()) {
-        credentialBackingStore().storeCredentialsForChallenge(
-            d->m_credentialDataToSaveInPersistentStore.challenge,
+    if (!isAuthenticationFailureStatusCode(message->status_code) && message->status_code < 500) {
+        d->m_context->storageSession().saveCredentialToPersistentStorage(
+            d->m_credentialDataToSaveInPersistentStore.protectionSpace,
             d->m_credentialDataToSaveInPersistentStore.credential);
     }
-#endif
 
     // The original response will be needed later to feed to willSendRequest in
@@ -971 +965 @@
 }
 
-#if PLATFORM(GTK)
-void getCredentialFromPersistentStoreCallback(const Credential& credential, void* data)
-{
-    static_cast<ResourceHandle*>(data)->continueDidReceiveAuthenticationChallenge(credential);
-}
-#endif
-
 void ResourceHandle::continueDidReceiveAuthenticationChallenge(const Credential& credentialFromPersistentStorage)
 {
@@ -1031 +1018 @@
     soup_session_pause_message(challenge.soupSession(), challenge.soupMessage());
 
-#if PLATFORM(GTK)
     // We could also do this before we even start the request, but that would be at the expense
     // of all request latency, versus a one-time latency for the small subset of requests that
@@ -1037 +1023 @@
     // will become session credentials after the first use.
     if (useCredentialStorage) {
-        credentialBackingStore().credentialForChallenge(challenge, getCredentialFromPersistentStoreCallback, this);
-        return;
-    }
-#endif
+        d->m_context->storageSession().getCredentialFromPersistentStorage(challenge.protectionSpace(), [this, protectedThis = makeRef(*this)] (Credential&& credential) {
+            continueDidReceiveAuthenticationChallenge(WTFMove(credential));
+        });
+        return;
+    }
 
     continueDidReceiveAuthenticationChallenge(Credential());
@@ -1075 +1062 @@
             CredentialStorage::defaultCredentialStorage().set(credential, challenge.protectionSpace(), challenge.failureResponse().url());
 
-#if PLATFORM(GTK)
         if (credential.persistence() == CredentialPersistencePermanent) {
             d->m_credentialDataToSaveInPersistentStore.credential = credential;
-            d->m_credentialDataToSaveInPersistentStore.challenge = challenge;
+            d->m_credentialDataToSaveInPersistentStore.protectionSpace = challenge.protectionSpace();
         }
-#endif
     }
 

trunk/Source/WebKit2/ChangeLog

@@ +1 @@
+2016-10-03  Carlos Garcia Campos  <cgarcia@igalia.com>
+
+        [SOUP] Cleanup persistent credential storage code
+        https://bugs.webkit.org/show_bug.cgi?id=162777
+
+        Reviewed by Alex Christensen.
+
+        Use USE(LIBSECRET) instead of ENABLE(CREDENTIAL_STORAGE).
+
+        * UIProcess/API/gtk/WebKitAuthenticationRequest.cpp:
+        (webkit_authentication_request_can_save_credentials):
+
 2016-10-02  Ryan Haddad  <ryanhaddad@apple.com>
 

trunk/Source/WebKit2/UIProcess/API/gtk/WebKitAuthenticationRequest.cpp

@@ -162 +162 @@
     g_return_val_if_fail(WEBKIT_IS_AUTHENTICATION_REQUEST(request), FALSE);
 
-#if ENABLE(CREDENTIAL_STORAGE)
+#if USE(LIBSECRET)
     return !request->priv->privateBrowsingEnabled;
 #else

trunk/Source/cmake/OptionsGTK.cmake

@@ -88 +88 @@
 WEBKIT_OPTION_DEFINE(USE_LIBNOTIFY "Whether to enable the default web notification implementation." PUBLIC ON)
 WEBKIT_OPTION_DEFINE(USE_LIBHYPHEN "Whether to enable the default automatic hyphenation implementation." PUBLIC ON)
+WEBKIT_OPTION_DEFINE(USE_LIBSECRET "Whether to enable the persistent credential storage using libsecret." PUBLIC ON)
 
 # Private options specific to the GTK+ port. Changing these options is
@@ -134 +135 @@
 # changing the value of the option.
 WEBKIT_OPTION_DEFAULT_PORT_VALUE(ENABLE_ACCELERATED_2D_CANVAS PUBLIC OFF)
-WEBKIT_OPTION_DEFAULT_PORT_VALUE(ENABLE_CREDENTIAL_STORAGE PUBLIC ON)
 WEBKIT_OPTION_DEFAULT_PORT_VALUE(ENABLE_DRAG_SUPPORT PUBLIC ON)
 WEBKIT_OPTION_DEFAULT_PORT_VALUE(ENABLE_GEOLOCATION PUBLIC ON)
@@ -229 +229 @@
 endif ()
 
-if (ENABLE_CREDENTIAL_STORAGE)
+if (USE_LIBSECRET)
     find_package(Libsecret)
     if (NOT LIBSECRET_FOUND)
-        message(FATAL_ERROR "libsecret is needed for ENABLE_CREDENTIAL_STORAGE")
+        message(FATAL_ERROR "libsecret is needed for USE_LIBSECRET")
     endif ()
 endif ()

trunk/Source/cmake/WebKitFeatures.cmake

@@ -84 +84 @@
     WEBKIT_OPTION_DEFINE(ENABLE_CONTENT_FILTERING "Toggle content filtering support" PRIVATE OFF)
     WEBKIT_OPTION_DEFINE(ENABLE_CONTEXT_MENUS "Toggle Context Menu support" PRIVATE ON)
-    WEBKIT_OPTION_DEFINE(ENABLE_CREDENTIAL_STORAGE "Toggle Credential Storage support" PRIVATE OFF)
     WEBKIT_OPTION_DEFINE(ENABLE_CSP_NEXT "Toggle Content Security Policy 1.1 support" PRIVATE OFF)
     WEBKIT_OPTION_DEFINE(ENABLE_CSS3_TEXT "Toggle CSS3 Text support" PRIVATE OFF)

trunk/Tools/ChangeLog

@@ +1 @@
+2016-10-03  Carlos Garcia Campos  <cgarcia@igalia.com>
+
+        [SOUP] Cleanup persistent credential storage code
+        https://bugs.webkit.org/show_bug.cgi?id=162777
+
+        Reviewed by Alex Christensen.
+
+        Use USE(LIBSECRET) instead of ENABLE(CREDENTIAL_STORAGE).
+
+        * TestWebKitAPI/Tests/WebKit2Gtk/TestAuthentication.cpp:
+        (testWebViewAuthenticationStorage):
+
 2016-10-02  Darin Adler  <darin@apple.com>
 

trunk/Tools/TestWebKitAPI/Tests/WebKit2Gtk/TestAuthentication.cpp

@@ -196 +196 @@
     // If WebKit has been compiled with libsecret, and private browsing is disabled
     // then check that credentials can be saved.
-#if ENABLE(CREDENTIAL_STORAGE)
+#if USE(LIBSECRET)
     webkit_settings_set_enable_private_browsing(webkit_web_view_get_settings(test->m_webView), FALSE);
     test->loadURI(kServer->getURIForPath("/auth-test.html").data());