Changeset 245314 in webkit

Timestamp:

May 14, 2019 3:50:21 PM (5 years ago)

Author:

aestes@apple.com

Message:

[Apple Pay] Payment APIs should be completely disabled in web views into which clients have injected user scripts
​https://bugs.webkit.org/show_bug.cgi?id=197751
<rdar://problem/50631563>

Reviewed by Alex Christensen.

Source/WebCore:

In r243324, when a document has had user agent scripts injected into it, payment APIs were
disabled at runtime by having all entry points return falsy values or throw exceptions
(e.g., ApplePaySession.canMakePayments() returns false).

In the case of user scripts in particular (e.g., WKUserScript), since we know whether these
exist at the time we create a document's DOMWindow, we can do better than r243324 by
completely disabling the payment APIs in the presence of user scripts.

To achieve this, this change introduces the 'EnabledByContext' extended attribute for
interfaces, which instructs the bindings generator to add a conjunct to the payment API
constructors that asks the interface's implementation class whether it should be enabled for
a given ScriptExecutionContext. The PaymentRequest and ApplePaySession interfaces adopt this
new extended attribute to implement the new user script check.

Added new API tests.

• Modules/applepay/ApplePaySession.idl:
• Modules/applepay/PaymentCoordinator.cpp:

(WebCore::PaymentCoordinator::shouldEnableApplePayAPIs const):

• Modules/applepay/PaymentCoordinator.h:
• Modules/applepay/PaymentSession.cpp:

(WebCore::PaymentSession::enabledForContext):

• Modules/applepay/PaymentSession.h:
• Modules/paymentrequest/PaymentHandler.cpp:

(WebCore::PaymentHandler::enabledForContext):

• Modules/paymentrequest/PaymentHandler.h:
• Modules/paymentrequest/PaymentRequest.cpp:

(WebCore::PaymentRequest::enabledForContext):

• Modules/paymentrequest/PaymentRequest.h:
• Modules/paymentrequest/PaymentRequest.idl:
• bindings/scripts/CodeGeneratorJS.pm:

(NeedsRuntimeCheck):
(GenerateRuntimeEnableConditionalString):

• bindings/scripts/IDLAttributes.json:
• bindings/scripts/preprocess-idls.pl:

(GenerateConstructorAttributes):

• bindings/scripts/test/JS/JSTestEnabledForContext.cpp: Added.
• bindings/scripts/test/JS/JSTestEnabledForContext.h: Added.
• bindings/scripts/test/JS/JSTestGlobalObject.cpp:

(WebCore::JSTestGlobalObject::finishCreation):
(WebCore::jsTestGlobalObjectTestEnabledForContextConstructorGetter):
(WebCore::jsTestGlobalObjectTestEnabledForContextConstructor):
(WebCore::setJSTestGlobalObjectTestEnabledForContextConstructorSetter):
(WebCore::setJSTestGlobalObjectTestEnabledForContextConstructor):

• bindings/scripts/test/TestEnabledForContext.idl: Added.

Tools:

Added new API tests.

• TestWebKitAPI/Tests/WebKitCocoa/ApplePay.mm:

(-[TestApplePayScriptMessageHandler initWithAPIsAvailableExpectation:canMakePaymentsExpectation:]):
(-[TestApplePayScriptMessageHandler userContentController:didReceiveScriptMessage:]):
(TestWebKitAPI::TEST):
(-[TestApplePayScriptMessageHandler initWithExpectation:]): Deleted.

• TestWebKitAPI/Tests/WebKitCocoa/apple-pay-availability.html:

Location:

trunk

Files:

• Source/WebCore/ChangeLog (modified) (1 diff)
• Source/WebCore/Modules/applepay/ApplePaySession.idl (modified) (1 diff)
• Source/WebCore/Modules/applepay/PaymentCoordinator.cpp (modified) (2 diffs)
• Source/WebCore/Modules/applepay/PaymentCoordinator.h (modified) (1 diff)
• Source/WebCore/Modules/applepay/PaymentSession.cpp (modified) (3 diffs)
• Source/WebCore/Modules/applepay/PaymentSession.h (modified) (1 diff)
• Source/WebCore/Modules/paymentrequest/PaymentHandler.cpp (modified) (2 diffs)
• Source/WebCore/Modules/paymentrequest/PaymentHandler.h (modified) (1 diff)
• Source/WebCore/Modules/paymentrequest/PaymentRequest.cpp (modified) (2 diffs)
• Source/WebCore/Modules/paymentrequest/PaymentRequest.h (modified) (1 diff)
• Source/WebCore/Modules/paymentrequest/PaymentRequest.idl (modified) (1 diff)
• Source/WebCore/bindings/scripts/CodeGeneratorJS.pm (modified) (2 diffs)
• Source/WebCore/bindings/scripts/IDLAttributes.json (modified) (1 diff)
• Source/WebCore/bindings/scripts/preprocess-idls.pl (modified) (1 diff)
• Source/WebCore/bindings/scripts/test/JS/JSTestEnabledForContext.cpp (added)
• Source/WebCore/bindings/scripts/test/JS/JSTestEnabledForContext.h (added)
• Source/WebCore/bindings/scripts/test/JS/JSTestGlobalObject.cpp (modified) (4 diffs)
• Source/WebCore/bindings/scripts/test/TestEnabledForContext.idl (copied) (copied from trunk/Source/WebCore/Modules/applepay/PaymentSession.h) (2 diffs)
• Tools/ChangeLog (modified) (1 diff)
• Tools/TestWebKitAPI/Tests/WebKitCocoa/ApplePay.mm (modified) (5 diffs)
• Tools/TestWebKitAPI/Tests/WebKitCocoa/apple-pay-availability.html (modified) (3 diffs)

trunk/Source/WebCore/ChangeLog

@@ +1 @@
+2019-05-14  Andy Estes  <aestes@apple.com>
+
+        [Apple Pay] Payment APIs should be completely disabled in web views into which clients have injected user scripts
+        https://bugs.webkit.org/show_bug.cgi?id=197751
+        <rdar://problem/50631563>
+
+        Reviewed by Alex Christensen.
+
+        In r243324, when a document has had user agent scripts injected into it, payment APIs were
+        disabled at runtime by having all entry points return falsy values or throw exceptions
+        (e.g., ApplePaySession.canMakePayments() returns false).
+
+        In the case of user scripts in particular (e.g., WKUserScript), since we know whether these
+        exist at the time we create a document's DOMWindow, we can do better than r243324 by
+        completely disabling the payment APIs in the presence of user scripts.
+
+        To achieve this, this change introduces the 'EnabledByContext' extended attribute for
+        interfaces, which instructs the bindings generator to add a conjunct to the payment API
+        constructors that asks the interface's implementation class whether it should be enabled for
+        a given ScriptExecutionContext. The PaymentRequest and ApplePaySession interfaces adopt this
+        new extended attribute to implement the new user script check.
+
+        Added new API tests.
+
+        * Modules/applepay/ApplePaySession.idl:
+        * Modules/applepay/PaymentCoordinator.cpp:
+        (WebCore::PaymentCoordinator::shouldEnableApplePayAPIs const):
+        * Modules/applepay/PaymentCoordinator.h:
+        * Modules/applepay/PaymentSession.cpp:
+        (WebCore::PaymentSession::enabledForContext):
+        * Modules/applepay/PaymentSession.h:
+        * Modules/paymentrequest/PaymentHandler.cpp:
+        (WebCore::PaymentHandler::enabledForContext):
+        * Modules/paymentrequest/PaymentHandler.h:
+        * Modules/paymentrequest/PaymentRequest.cpp:
+        (WebCore::PaymentRequest::enabledForContext):
+        * Modules/paymentrequest/PaymentRequest.h:
+        * Modules/paymentrequest/PaymentRequest.idl:
+        * bindings/scripts/CodeGeneratorJS.pm:
+        (NeedsRuntimeCheck):
+        (GenerateRuntimeEnableConditionalString):
+        * bindings/scripts/IDLAttributes.json:
+        * bindings/scripts/preprocess-idls.pl:
+        (GenerateConstructorAttributes):
+        * bindings/scripts/test/JS/JSTestEnabledForContext.cpp: Added.
+        * bindings/scripts/test/JS/JSTestEnabledForContext.h: Added.
+        * bindings/scripts/test/JS/JSTestGlobalObject.cpp:
+        (WebCore::JSTestGlobalObject::finishCreation):
+        (WebCore::jsTestGlobalObjectTestEnabledForContextConstructorGetter):
+        (WebCore::jsTestGlobalObjectTestEnabledForContextConstructor):
+        (WebCore::setJSTestGlobalObjectTestEnabledForContextConstructorSetter):
+        (WebCore::setJSTestGlobalObjectTestEnabledForContextConstructor):
+        * bindings/scripts/test/TestEnabledForContext.idl: Added.
+
 2019-05-14  Robin Morisset  <rmorisset@apple.com>
 

trunk/Source/WebCore/Modules/applepay/ApplePaySession.idl

@@ -31 +31 @@
     ConstructorMayThrowException,
     EnabledBySetting=ApplePay,
+    EnabledForContext,
 ] interface ApplePaySession : EventTarget {
     const unsigned short STATUS_SUCCESS = 0;

trunk/Source/WebCore/Modules/applepay/PaymentCoordinator.cpp

@@ -32 +32 @@
 #include "LinkIconCollector.h"
 #include "Logging.h"
+#include "Page.h"
 #include "PaymentAuthorizationStatus.h"
 #include "PaymentCoordinatorClient.h"
 #include "PaymentSession.h"
+#include "UserContentProvider.h"
 #include <wtf/CompletionHandler.h>
 #include <wtf/URL.h>
@@ -250 +252 @@
 
     return m_client.validatedPaymentNetwork(paymentNetwork);
+}
+
+bool PaymentCoordinator::shouldEnableApplePayAPIs(Document& document) const
+{
+    if (m_client.supportsUnrestrictedApplePay()) {
+        RELEASE_LOG_IF_ALLOWED("shouldEnableApplePayAPIs() -> true (unrestricted client)");
+        return true;
+    }
+
+    bool shouldEnableAPIs = true;
+    document.page()->userContentProvider().forEachUserScript([&](DOMWrapperWorld&, const UserScript&) {
+        shouldEnableAPIs = false;
+    });
+
+    RELEASE_LOG_IF_ALLOWED("shouldEnableApplePayAPIs() -> %d", shouldEnableAPIs);
+    return shouldEnableAPIs;
 }
 

trunk/Source/WebCore/Modules/applepay/PaymentCoordinator.h

@@ -79 +79 @@
     Optional<String> validatedPaymentNetwork(Document&, unsigned version, const String&) const;
 
+    bool shouldEnableApplePayAPIs(Document&) const;
     WEBCORE_EXPORT bool shouldAllowApplePay(Document&) const;
     WEBCORE_EXPORT bool shouldAllowUserAgentScripts(Document&) const;

trunk/Source/WebCore/Modules/applepay/PaymentSession.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2017 Apple Inc. All rights reserved.
+ * Copyright (C) 2017-2019 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -31 +31 @@
 #include "Document.h"
 #include "DocumentLoader.h"
+#include "Page.h"
 #include "SecurityOrigin.h"
 
@@ -73 +74 @@
 }
 
+bool PaymentSession::enabledForContext(ScriptExecutionContext& context)
+{
+    auto& document = downcast<Document>(context);
+    if (auto page = document.page())
+        return page->paymentCoordinator().shouldEnableApplePayAPIs(document);
+
+    return false;
+}
+
 } // namespace WebCore
 

trunk/Source/WebCore/Modules/applepay/PaymentSession.h

@@ -42 +42 @@
 public:
     static ExceptionOr<void> canCreateSession(Document&);
+    static bool enabledForContext(ScriptExecutionContext&);
 
     virtual unsigned version() const = 0;

trunk/Source/WebCore/Modules/paymentrequest/PaymentHandler.cpp

@@ -1 +1 @@
 /*
- * Copyright (C) 2017 Apple Inc. All rights reserved.
+ * Copyright (C) 2017-2019 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -62 +62 @@
 }
 
+bool PaymentHandler::enabledForContext(ScriptExecutionContext& context)
+{
+#if ENABLE(APPLE_PAY)
+    return PaymentSession::enabledForContext(context);
+#else
+    UNUSED_PARAM(context);
+    return false;
+#endif
+}
+
 bool PaymentHandler::hasActiveSession(Document& document)
 {

trunk/Source/WebCore/Modules/paymentrequest/PaymentHandler.h

@@ -47 +47 @@
     static RefPtr<PaymentHandler> create(Document&, PaymentRequest&, const PaymentRequest::MethodIdentifier&);
     static ExceptionOr<void> canCreateSession(Document&);
+    static bool enabledForContext(ScriptExecutionContext&);
     static bool hasActiveSession(Document&);
 

trunk/Source/WebCore/Modules/paymentrequest/PaymentRequest.cpp

@@ -35 +35 @@
 #include "JSPaymentDetailsUpdate.h"
 #include "JSPaymentResponse.h"
+#include "Page.h"
 #include "PaymentAddress.h"
+#include "PaymentCoordinator.h"
 #include "PaymentCurrencyAmount.h"
 #include "PaymentDetailsInit.h"
@@ -352 +354 @@
 }
 
+bool PaymentRequest::enabledForContext(ScriptExecutionContext& context)
+{
+    return PaymentHandler::enabledForContext(context);
+}
+
 PaymentRequest::PaymentRequest(Document& document, PaymentOptions&& options, PaymentDetailsInit&& details, Vector<String>&& serializedModifierData, Vector<Method>&& serializedMethodData, String&& selectedShippingOption)
     : ActiveDOMObject { document }

trunk/Source/WebCore/Modules/paymentrequest/PaymentRequest.h

@@ -59 +59 @@
 
     static ExceptionOr<Ref<PaymentRequest>> create(Document&, Vector<PaymentMethodData>&&, PaymentDetailsInit&&, PaymentOptions&&);
+    static bool enabledForContext(ScriptExecutionContext&);
     ~PaymentRequest();
 

trunk/Source/WebCore/Modules/paymentrequest/PaymentRequest.idl

@@ -31 +31 @@
     ConstructorMayThrowException,
     EnabledBySetting=PaymentRequest,
+    EnabledForContext,
     SecureContext,
 ] interface PaymentRequest : EventTarget {

trunk/Source/WebCore/bindings/scripts/CodeGeneratorJS.pm

@@ -1706 +1706 @@
 
     return $context->extendedAttributes->{EnabledAtRuntime}
+        || $context->extendedAttributes->{EnabledForContext}
         || $context->extendedAttributes->{EnabledForWorld}
         || $context->extendedAttributes->{EnabledBySetting}
@@ -3787 +3788 @@
             }
         }
+    }
+
+    if ($context->extendedAttributes->{EnabledForContext}) {
+        assert("Must not specify value for EnabledForContext.") unless $context->extendedAttributes->{EnabledForContext} eq "VALUE_IS_MISSING";
+        assert("EnabledForContext must be an interface or constructor attribute.") unless $codeGenerator->IsConstructorType($context->type);
+
+        my $contextRef = "*jsCast<JSDOMGlobalObject*>(" . $globalObjectPtr . ")->scriptExecutionContext()";
+        my $name = $context->name;
+        push(@conjuncts,  "${name}::enabledForContext(" . $contextRef . ")");
     }
 

trunk/Source/WebCore/bindings/scripts/IDLAttributes.json

@@ -193 +193 @@
             "values": ["*"]
         },
+        "EnabledForContext": {
+            "contextsAllowed": ["attribute", "interface"]
+        },
         "EnabledForWorld": {
             "contextsAllowed": ["attribute", "operation"],

trunk/Source/WebCore/bindings/scripts/preprocess-idls.pl

@@ -284 +284 @@
       next unless ($attributeName eq "Conditional" || $attributeName eq "EnabledAtRuntime" || $attributeName eq "EnabledForWorld"
         || $attributeName eq "EnabledBySetting" || $attributeName eq "SecureContext" || $attributeName eq "PrivateIdentifier"
-        || $attributeName eq "PublicIdentifier" || $attributeName eq "DisabledByQuirk" || $attributeName eq "EnabledByQuirk");
+        || $attributeName eq "PublicIdentifier" || $attributeName eq "DisabledByQuirk" || $attributeName eq "EnabledByQuirk" || $attributeName eq "EnabledForContext");
       my $extendedAttribute = $attributeName;
       $extendedAttribute .= "=" . $extendedAttributes->{$attributeName} unless $extendedAttributes->{$attributeName} eq "VALUE_IS_MISSING";

trunk/Source/WebCore/bindings/scripts/test/JS/JSTestGlobalObject.cpp

@@ -40 +40 @@
 #include "JSTestDomainSecurity.h"
 #include "JSTestEnabledBySetting.h"
+#include "JSTestEnabledForContext.h"
 #include "JSTestEventConstructor.h"
 #include "JSTestEventTarget.h"
@@ -173 +174 @@
 JSC::EncodedJSValue jsTestGlobalObjectTestEnabledBySettingConstructor(JSC::ExecState*, JSC::EncodedJSValue, JSC::PropertyName);
 bool setJSTestGlobalObjectTestEnabledBySettingConstructor(JSC::ExecState*, JSC::EncodedJSValue, JSC::EncodedJSValue);
+JSC::EncodedJSValue jsTestGlobalObjectTestEnabledForContextConstructor(JSC::ExecState*, JSC::EncodedJSValue, JSC::PropertyName);
+bool setJSTestGlobalObjectTestEnabledForContextConstructor(JSC::ExecState*, JSC::EncodedJSValue, JSC::EncodedJSValue);
 JSC::EncodedJSValue jsTestGlobalObjectTestEventConstructorConstructor(JSC::ExecState*, JSC::EncodedJSValue, JSC::PropertyName);
 bool setJSTestGlobalObjectTestEventConstructorConstructor(JSC::ExecState*, JSC::EncodedJSValue, JSC::EncodedJSValue);
@@ -703 +706 @@
         putDirectCustomAccessor(vm, static_cast<JSVMClientData*>(vm.clientData)->builtinNames().enabledAtRuntimeAttributePublicName(), CustomGetterSetter::create(vm, jsTestGlobalObjectEnabledAtRuntimeAttribute, setJSTestGlobalObjectEnabledAtRuntimeAttribute), attributesForStructure(static_cast<unsigned>(JSC::PropertyAttribute::CustomAccessor)));
 #endif
+    if ((jsCast<JSDOMGlobalObject*>(globalObject())->scriptExecutionContext()->isSecureContext() && TestEnabledForContext::enabledForContext(*jsCast<JSDOMGlobalObject*>(globalObject())->scriptExecutionContext())))
+        putDirectCustomAccessor(vm, static_cast<JSVMClientData*>(vm.clientData)->builtinNames().TestEnabledForContextPublicName(), CustomGetterSetter::create(vm, jsTestGlobalObjectTestEnabledForContextConstructor, setJSTestGlobalObjectTestEnabledForContextConstructor), attributesForStructure(static_cast<unsigned>(JSC::PropertyAttribute::DontEnum)));
     putDirectCustomAccessor(vm, static_cast<JSVMClientData*>(vm.clientData)->builtinNames().publicAndPrivateAttributePrivateName(), CustomGetterSetter::create(vm, jsTestGlobalObjectPublicAndPrivateAttribute, nullptr), attributesForStructure(JSC::PropertyAttribute::DontDelete | JSC::PropertyAttribute::ReadOnly));
 #if ENABLE(TEST_FEATURE)
@@ -1117 +1122 @@
 }
 
+static inline JSValue jsTestGlobalObjectTestEnabledForContextConstructorGetter(ExecState& state, JSTestGlobalObject& thisObject, ThrowScope& throwScope)
+{
+    UNUSED_PARAM(throwScope);
+    UNUSED_PARAM(state);
+    return JSTestEnabledForContext::getConstructor(state.vm(), thisObject.globalObject());
+}
+
+EncodedJSValue jsTestGlobalObjectTestEnabledForContextConstructor(ExecState* state, EncodedJSValue thisValue, PropertyName)
+{
+    return IDLAttribute<JSTestGlobalObject>::get<jsTestGlobalObjectTestEnabledForContextConstructorGetter>(*state, thisValue, "TestEnabledForContext");
+}
+
+static inline bool setJSTestGlobalObjectTestEnabledForContextConstructorSetter(ExecState& state, JSTestGlobalObject& thisObject, JSValue value, ThrowScope& throwScope)
+{
+    UNUSED_PARAM(throwScope);
+    // Shadowing a built-in constructor.
+    return thisObject.putDirect(state.vm(), Identifier::fromString(&state.vm(), reinterpret_cast<const LChar*>("TestEnabledForContext"), strlen("TestEnabledForContext")), value);
+}
+
+bool setJSTestGlobalObjectTestEnabledForContextConstructor(ExecState* state, EncodedJSValue thisValue, EncodedJSValue encodedValue)
+{
+    return IDLAttribute<JSTestGlobalObject>::set<setJSTestGlobalObjectTestEnabledForContextConstructorSetter>(*state, thisValue, encodedValue, "TestEnabledForContext");
+}
+
 static inline JSValue jsTestGlobalObjectTestEventConstructorConstructorGetter(ExecState& state, JSTestGlobalObject& thisObject, ThrowScope& throwScope)
 {

trunk/Source/WebCore/bindings/scripts/test/TestEnabledForContext.idl

@@ -1 +1 @@
 /*
- * Copyright (C) 2017 Apple Inc. All rights reserved.
+ * Copyright (C) 2019 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
@@ -24 +24 @@
  */
 
-#pragma once
-
-#if ENABLE(APPLE_PAY)
-
-#include "ApplePaySessionPaymentRequest.h"
-#include "ExceptionOr.h"
-#include "PaymentSessionBase.h"
-
-namespace WebCore {
-
-class Document;
-class Payment;
-class PaymentContact;
-class PaymentMethod;
-
-class PaymentSession : public virtual PaymentSessionBase {
-public:
-    static ExceptionOr<void> canCreateSession(Document&);
-
-    virtual unsigned version() const = 0;
-    virtual void validateMerchant(URL&&) = 0;
-    virtual void didAuthorizePayment(const Payment&) = 0;
-    virtual void didSelectShippingMethod(const ApplePaySessionPaymentRequest::ShippingMethod&) = 0;
-    virtual void didSelectShippingContact(const PaymentContact&) = 0;
-    virtual void didSelectPaymentMethod(const PaymentMethod&) = 0;
-    virtual void didCancelPaymentSession() = 0;
+[
+    EnabledForContext,
+    SecureContext,
+] interface TestEnabledForContext {
+    [EnabledBySetting=TestSetting, EnabledForContext] attribute TestSubObjConstructor TestSubObjEnabledForContext;
 };
-
-} // namespace WebCore
-
-#endif // ENABLE(APPLE_PAY)

trunk/Tools/ChangeLog

@@ +1 @@
+2019-05-14  Andy Estes  <aestes@apple.com>
+
+        [Apple Pay] Payment APIs should be completely disabled in web views into which clients have injected user scripts
+        https://bugs.webkit.org/show_bug.cgi?id=197751
+        <rdar://problem/50631563>
+
+        Reviewed by Alex Christensen.
+
+        Added new API tests.
+
+        * TestWebKitAPI/Tests/WebKitCocoa/ApplePay.mm:
+        (-[TestApplePayScriptMessageHandler initWithAPIsAvailableExpectation:canMakePaymentsExpectation:]):
+        (-[TestApplePayScriptMessageHandler userContentController:didReceiveScriptMessage:]):
+        (TestWebKitAPI::TEST):
+        (-[TestApplePayScriptMessageHandler initWithExpectation:]): Deleted.
+        * TestWebKitAPI/Tests/WebKitCocoa/apple-pay-availability.html:
+
 2019-05-14  Youenn Fablet  <youenn@apple.com>
 

trunk/Tools/TestWebKitAPI/Tests/WebKitCocoa/ApplePay.mm

@@ -42 +42 @@
 
 - (instancetype)init NS_UNAVAILABLE;
-- (instancetype)initWithExpectation:(BOOL)expectation;
+- (instancetype)initWithAPIsAvailableExpectation:(BOOL)apisAvailableExpectation canMakePaymentsExpectation:(BOOL)canMakePaymentsExpectation;
+
+@property (nonatomic, setter=setAPIsAvailableExpectation:) BOOL apisAvailableExpectation;
+@property (nonatomic) BOOL canMakePaymentsExpectation;
 
 @end
 
-@implementation TestApplePayScriptMessageHandler {
-    BOOL _expectation;
-}
-
-- (instancetype)initWithExpectation:(BOOL)expectation
+@implementation TestApplePayScriptMessageHandler
+
+- (instancetype)initWithAPIsAvailableExpectation:(BOOL)apisAvailableExpectation canMakePaymentsExpectation:(BOOL)canMakePaymentsExpectation
 {
     if (!(self = [super init]))
         return nil;
 
-    _expectation = expectation;
+    _apisAvailableExpectation = apisAvailableExpectation;
+    _canMakePaymentsExpectation = canMakePaymentsExpectation;
     return self;
 }
@@ -61 +63 @@
 - (void)userContentController:(WKUserContentController *)userContentController didReceiveScriptMessage:(WKScriptMessage *)message
 {
-    EXPECT_EQ(_expectation, [[message.body objectForKey:@"supportsVersion"] boolValue]);
-    EXPECT_EQ(_expectation, [[message.body objectForKey:@"canMakePayments"] boolValue]);
-    EXPECT_EQ(_expectation, [[message.body objectForKey:@"canMakePaymentsWithActiveCard"] boolValue]);
-    EXPECT_EQ(_expectation, [[message.body objectForKey:@"canMakePayment"] boolValue]);
+    EXPECT_EQ(_apisAvailableExpectation, [[message.body objectForKey:@"applePaySessionAvailable"] boolValue]);
+    EXPECT_EQ(_apisAvailableExpectation, [[message.body objectForKey:@"paymentRequestAvailable"] boolValue]);
+    EXPECT_EQ(_canMakePaymentsExpectation, [[message.body objectForKey:@"supportsVersion"] boolValue]);
+    EXPECT_EQ(_canMakePaymentsExpectation, [[message.body objectForKey:@"canMakePayments"] boolValue]);
+    EXPECT_EQ(_canMakePaymentsExpectation, [[message.body objectForKey:@"canMakePaymentsWithActiveCard"] boolValue]);
+    EXPECT_EQ(_canMakePaymentsExpectation, [[message.body objectForKey:@"canMakePayment"] boolValue]);
     isDone = true;
 }
@@ -76 +80 @@
     [TestProtocol registerWithScheme:@"https"];
 
-    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithExpectation:YES]);
-
-    WKWebViewConfiguration *configuration = [WKWebViewConfiguration _test_configurationWithTestPlugInClassName:@"WebProcessPlugInWithInternals"];
-    [configuration.userContentController addScriptMessageHandler:messageHandler.get() name:@"testApplePay"];
-
-    auto webView = adoptNS([[TestWKWebView alloc] initWithFrame:CGRectZero configuration:configuration]);
-    [webView loadRequest:[NSURLRequest requestWithURL:[NSURL URLWithString:@"https://bundle-html-file/apple-pay-availability"]]];
-
-    Util::run(&isDone);
-
-    [TestProtocol unregister];
-}
-
-TEST(ApplePay, UserScriptDisablesApplePay)
-{
-    [TestProtocol registerWithScheme:@"https"];
-
-    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithExpectation:NO]);
+    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithAPIsAvailableExpectation:YES canMakePaymentsExpectation:YES]);
+
+    WKWebViewConfiguration *configuration = [WKWebViewConfiguration _test_configurationWithTestPlugInClassName:@"WebProcessPlugInWithInternals"];
+    [configuration.userContentController addScriptMessageHandler:messageHandler.get() name:@"testApplePay"];
+
+    auto webView = adoptNS([[TestWKWebView alloc] initWithFrame:CGRectZero configuration:configuration]);
+    [webView loadRequest:[NSURLRequest requestWithURL:[NSURL URLWithString:@"https://bundle-html-file/apple-pay-availability"]]];
+
+    Util::run(&isDone);
+
+    [TestProtocol unregister];
+}
+
+TEST(ApplePay, UserScriptAtDocumentStartDisablesApplePay)
+{
+    [TestProtocol registerWithScheme:@"https"];
+
+    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithAPIsAvailableExpectation:NO canMakePaymentsExpectation:NO]);
     auto userScript = adoptNS([[WKUserScript alloc] initWithSource:@"window.wkUserScriptInjected = true" injectionTime:WKUserScriptInjectionTimeAtDocumentStart forMainFrameOnly:YES]);
 
@@ -110 +114 @@
 }
 
+TEST(ApplePay, UserScriptAtDocumentEndDisablesApplePay)
+{
+    [TestProtocol registerWithScheme:@"https"];
+    
+    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithAPIsAvailableExpectation:NO canMakePaymentsExpectation:NO]);
+    auto userScript = adoptNS([[WKUserScript alloc] initWithSource:@"window.wkUserScriptInjected = true" injectionTime:WKUserScriptInjectionTimeAtDocumentEnd forMainFrameOnly:YES]);
+    
+    WKWebViewConfiguration *configuration = [WKWebViewConfiguration _test_configurationWithTestPlugInClassName:@"WebProcessPlugInWithInternals"];
+    [configuration.userContentController addUserScript:userScript.get()];
+    [configuration.userContentController addScriptMessageHandler:messageHandler.get() name:@"testApplePay"];
+    
+    auto webView = adoptNS([[TestWKWebView alloc] initWithFrame:CGRectZero configuration:configuration]);
+    [webView loadRequest:[NSURLRequest requestWithURL:[NSURL URLWithString:@"https://bundle-html-file/apple-pay-availability"]]];
+    
+    Util::run(&isDone);
+    
+    EXPECT_EQ(YES, [[webView objectByEvaluatingJavaScript:@"window.wkUserScriptInjected"] boolValue]);
+    
+    [TestProtocol unregister];
+}
+
 TEST(ApplePay, UserAgentScriptEvaluationDisablesApplePay)
 {
     [TestProtocol registerWithScheme:@"https"];
 
-    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithExpectation:NO]);
+    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithAPIsAvailableExpectation:YES canMakePaymentsExpectation:NO]);
 
     WKWebViewConfiguration *configuration = [WKWebViewConfiguration _test_configurationWithTestPlugInClassName:@"WebProcessPlugInWithInternals"];
@@ -127 +152 @@
 
     EXPECT_EQ(YES, [[webView objectByEvaluatingJavaScript:@"window.wkScriptEvaluated"] boolValue]);
+
+    [TestProtocol unregister];
+}
+
+TEST(ApplePay, UserAgentScriptEvaluationDisablesApplePayInExistingObjects)
+{
+    [TestProtocol registerWithScheme:@"https"];
+
+    auto messageHandler = adoptNS([[TestApplePayScriptMessageHandler alloc] initWithAPIsAvailableExpectation:YES canMakePaymentsExpectation:YES]);
+
+    WKWebViewConfiguration *configuration = [WKWebViewConfiguration _test_configurationWithTestPlugInClassName:@"WebProcessPlugInWithInternals"];
+    [configuration.userContentController addScriptMessageHandler:messageHandler.get() name:@"testApplePay"];
+
+    auto webView = adoptNS([[TestWKWebView alloc] initWithFrame:CGRectZero configuration:configuration]);
+    [webView loadRequest:[NSURLRequest requestWithURL:[NSURL URLWithString:@"https://bundle-html-file/apple-pay-availability"]]];
+
+    Util::run(&isDone);
+
+    isDone = false;
+    [messageHandler setCanMakePaymentsExpectation:NO];
+    [webView evaluateJavaScript:@"document.location.hash = '#test'" completionHandler:nil];
+
+    Util::run(&isDone);
 
     [TestProtocol unregister];

trunk/Tools/TestWebKitAPI/Tests/WebKitCocoa/apple-pay-availability.html

@@ -27 +27 @@
     };
 
-    window.addEventListener('load', async () => {
+    const eventListener = async () => {
         internals.mockPaymentCoordinator.supportsUnrestrictedApplePay = false;
+
+        const applePaySessionAvailable = !!window.ApplePaySession;
+        const paymentRequestAvailable = !!window.PaymentRequest;
+        if (!applePaySessionAvailable || !paymentRequestAvailable) {
+            window.webkit.messageHandlers.testApplePay.postMessage({ applePaySessionAvailable, paymentRequestAvailable });
+            return;
+        }
 
         const supportsVersion = ApplePaySession.supportsVersion(1);
@@ -34 +41 @@
         const canMakePaymentsWithActiveCard = await ApplePaySession.canMakePaymentsWithActiveCard('');
 
-        const paymentRequest = new PaymentRequest([applePayMethod()], {
-            total: {
-                label: 'total',
-                amount: { currency: 'USD', value: '0.00' },
-            },
-        });
+        if (!window.wkPaymentRequest) {
+            wkPaymentRequest = new PaymentRequest([applePayMethod()], {
+                total: {
+                    label: 'total',
+                    amount: { currency: 'USD', value: '0.00' },
+                },
+            });
+        }
 
-        const canMakePayment = await paymentRequest.canMakePayment();
+        const canMakePayment = await wkPaymentRequest.canMakePayment();
 
         window.webkit.messageHandlers.testApplePay.postMessage({
+            applePaySessionAvailable,
+            paymentRequestAvailable,
             supportsVersion,
             canMakePayments,
@@ -49 +60 @@
             canMakePayment,
         });
-    });
+    };
+
+    window.addEventListener('load', eventListener);
+    window.addEventListener('hashchange', eventListener);
 </script>