Chrome Version: 61.0.3163.81
OS: Android Oreo
What steps will reproduce the problem?
(1) Navigate to https://badssl.com/
(2) Navigate to each of the pages under "Mixed Content"
(3) All but the first "Mixed Script" don't show any security chip
The same happens for me when browsing https://m.facebook.com where I noticed it. And this seems to only happen on "small" Android devices (phones, not tablets).
This stops long-press on the omnibox from working too. One can still access to the functionality provided by tapping the chip or long-pressing by -- as I just learned -- tapping the 3-dot-menu and then the "i" icon.
What is the expected result?
I'm unsure if this is a bug or WAI. But it feels weird that a) an HTTPS site doesn't show a chip and b) that a page with mixed content doesn't show a chip.
What happens instead?
IMO a security chip should be presented for all/most of these cases.
Comment 1 by sandeepkumars@chromium.org
, Sep 11 2017Labels: Needs-triage-Mobile Needs-Feedback