New issue
Advanced search Search tips
Note: Color blocks (like or ) mean that a user may not be available. Tooltip shows the reason.
Starred by 11 users

Issue metadata

Status: Fixed
Owner:
Last visit 18 days ago
Closed: Mar 2017
Cc:
Components:
EstimatedDays: ----
NextAction: ----
OS: ----
Pri: 3
Type: Bug
Team-Security-UX

Blocking:
issue 696350



Sign in to add a comment

Allow handling certificate errors via DevTools

Project Member Reported by eseckler@chromium.org, Oct 26 2016

Issue description

For headless, we can't show a UI warning for bad certificates as chrome does. Instead, we should investigate exposing certificate errors as events through DevTools and controlling what action to take through a DevTools command.

FYI, currently such errors are handled in SSLManager::OnCertErrorInternal, which delegates to ContentBrowserClient::AllowCertificateError.
 
Labels: HeadlessUpForGrabs
Labels: -HeadlessUpForGrabs
Owner: irisu@chromium.org
Status: Started (was: Available)

Comment 4 by sleevi@google.com, Feb 27 2017

Components: Internals>Network>Certificate UI>Browser>Interstitials
Adding Certificate and Interstitials owners, since this would give DevTools the ability to handle/bypass interstitials.
Blocking: 696350
Cc: sureshkumari@chromium.org eseckler@chromium.org
 Issue 697721  has been merged into this issue.
Project Member

Comment 7 by bugdroid1@chromium.org, Mar 22 2017

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/8452ddd64771d3573cd7083f3e6e263cf67fbe1b

commit 8452ddd64771d3573cd7083f3e6e263cf67fbe1b
Author: irisu <irisu@chromium.org>
Date: Wed Mar 22 07:46:14 2017

Add certificate error handling to devtools.

This is necessary as headless chrome cannot show a UI warning for SSL
certificate errors. Instead, we can expose the errors as DevTools events
and control the action to take through a DevTools command.

BUG= 659662 

Review-Url: https://codereview.chromium.org/2639203003
Cr-Commit-Position: refs/heads/master@{#458673}

[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/chrome/browser/chrome_content_browser_client.cc
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/browser/devtools/protocol/devtools_protocol_browsertest.cc
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/browser/devtools/protocol/security_handler.cc
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/browser/devtools/protocol/security_handler.h
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/browser/devtools/render_frame_devtools_agent_host.h
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/browser/ssl/ssl_manager.cc
[add] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/test/data/devtools/image.html
[add] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/content/test/data/devtools/test.jpg
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/third_party/WebKit/Source/core/inspector/browser_protocol.json
[modify] https://crrev.com/8452ddd64771d3573cd7083f3e6e263cf67fbe1b/third_party/WebKit/Source/devtools/front_end/security/SecurityModel.js

Comment 8 by irisu@chromium.org, Mar 23 2017

Status: Fixed (was: Started)
Labels: M-59

Sign in to add a comment