commit 085432063f1d00d6eaf2b0644b4bf44825230bb7
author Tim Volodine <timvolodine@google.com> Wed Apr 27 18:32:39 2016 +0000
committer Android (Google) Code Review <android-gerrit@google.com> Wed Apr 27 18:32:39 2016 +0000
tree 2abb6b0cd565c60cd20a59cde0aba3798ed6d65a
parent a210939ced3b933b54a5b69f3737ec109cf0b4d4
parent dce3c4ab63cb87b0cd634f385ed2e22565bfff78

Merge "[CTS] Add a GeolocationTest to make sure geolocation is denied on insecure origins" into nyc-dev

tests/tests/webkit/src/android/webkit/cts/GeolocationTest.java

diff --git a/tests/tests/webkit/src/android/webkit/cts/GeolocationTest.java b/tests/tests/webkit/src/android/webkit/cts/GeolocationTest.java
index 1394ccd..b6dc991 100644
--- a/tests/tests/webkit/src/android/webkit/cts/GeolocationTest.java
+++ b/tests/tests/webkit/src/android/webkit/cts/GeolocationTest.java
@@ -64,6 +64,7 @@
     // url, and different domains.
     private static final String URL_1 = "https://www.example.com";
     private static final String URL_2 = "https://www.example.org";
+    private static final String URL_INSECURE = "http://www.example.org";
 
     private static final String JS_INTERFACE_NAME = "Android";
     private static final int POLLING_TIMEOUT = 60 * 1000;
@@ -536,7 +537,7 @@
         originCheck.run();
     }
 
-    // Test loading pages and checks rejecting once and recjecting the domain forever
+    // Test loading pages and checks rejecting once and rejecting the domain forever
     public void testSimpleGeolocationRequestReject() throws Exception {
         if (!NullWebViewUtils.isWebViewAvailable()) {
             return;
@@ -591,6 +592,26 @@
         falseCheck.run();
     }
 
+    // Test deny geolocation on insecure origins
+    public void testGeolocationRequestDeniedOnInsecureOrigin() throws Exception {
+        if (!NullWebViewUtils.isWebViewAvailable()) {
+            return;
+        }
+        final TestSimpleGeolocationRequestWebChromeClient chromeClientAcceptAlways =
+                new TestSimpleGeolocationRequestWebChromeClient(mOnUiThread, true, true);
+        mOnUiThread.setWebChromeClient(chromeClientAcceptAlways);
+        loadUrlAndUpdateLocation(URL_INSECURE);
+        Callable<Boolean> locationDenied = new Callable<Boolean>() {
+            @Override
+            public Boolean call() {
+                return mJavascriptStatusReceiver.mDenied;
+            }
+        };
+        PollingCheck.check("JS got position", POLLING_TIMEOUT, locationDenied);
+        // The geolocation permission prompt should not be called
+        assertFalse(chromeClientAcceptAlways.mReceivedRequest);
+    }
+
     // Object added to the page via AddJavascriptInterface() that is used by the test Javascript to
     // notify back to Java when a location or error is received.
     public final static class JavascriptStatusReceiver {