components/autofill/content/renderer/password_autofill_agent.h - chromium/src - Git at Google

 // Copyright 2013 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.

 #ifndef COMPONENTS_AUTOFILL_CONTENT_RENDERER_PASSWORD_AUTOFILL_AGENT_H_
 #define COMPONENTS_AUTOFILL_CONTENT_RENDERER_PASSWORD_AUTOFILL_AGENT_H_

 #include <map>
 #include <memory>
 #include <vector>

 #include "base/macros.h"
 #include "base/memory/weak_ptr.h"
 #include "build/build_config.h"
 #include "components/autofill/content/common/autofill_agent.mojom.h"
 #include "components/autofill/content/common/autofill_driver.mojom.h"
 #include "components/autofill/content/renderer/autofill_agent.h"
 #include "components/autofill/content/renderer/form_tracker.h"
 #include "components/autofill/content/renderer/html_based_username_detector.h"
 #include "components/autofill/content/renderer/password_form_conversion_utils.h"
 #include "components/autofill/content/renderer/provisionally_saved_password_form.h"
 #include "components/autofill/core/common/form_data_predictions.h"
 #include "components/autofill/core/common/password_form.h"
 #include "components/autofill/core/common/password_form_field_prediction_map.h"
 #include "components/autofill/core/common/password_form_fill_data.h"
 #include "content/public/renderer/render_frame_observer.h"
 #include "content/public/renderer/render_view_observer.h"
 #include "mojo/public/cpp/bindings/binding.h"
 #include "services/service_manager/public/cpp/binder_registry.h"
 #include "third_party/WebKit/public/web/WebInputElement.h"

 #if !defined(OS_ANDROID) && !defined(OS_IOS)
 #include "components/autofill/content/renderer/page_passwords_analyser.h"
 #endif

 namespace blink {
 class WebInputElement;
 }

 namespace autofill {

 // Names of HTML attributes to show form and field signatures for debugging.
 extern const char kDebugAttributeForFormSignature[];
 extern const char kDebugAttributeForFieldSignature[];

 class RendererSavePasswordProgressLogger;
 class PasswordGenerationAgent;

 // This class is responsible for filling password forms.
 class PasswordAutofillAgent : public content::RenderFrameObserver,
                               public FormTracker::Observer,
                               public mojom::PasswordAutofillAgent {
  public:
   PasswordAutofillAgent(content::RenderFrame* render_frame,
                         service_manager::BinderRegistry* registry);
   ~PasswordAutofillAgent() override;

   void BindRequest(mojom::PasswordAutofillAgentRequest request);

   void SetAutofillAgent(AutofillAgent* autofill_agent);

   void SetPasswordGenerationAgent(PasswordGenerationAgent* generation_agent);

   const mojom::PasswordManagerDriverPtr& GetPasswordManagerDriver();

   // mojom::PasswordAutofillAgent:
   void FillPasswordForm(int key,
                         const PasswordFormFillData& form_data) override;
   void SetLoggingState(bool active) override;
   void AutofillUsernameAndPasswordDataReceived(
       const FormsPredictionsMap& predictions) override;
   void FindFocusedPasswordForm(
       FindFocusedPasswordFormCallback callback) override;
   void BlacklistedFormFound() override;

   // FormTracker::Observer
   void OnProvisionallySaveForm(const blink::WebFormElement& form,
                                const blink::WebInputElement& element,
                                ElementChangeSource source) override;
   void OnProbablyFormSubmitted() override;
   void OnFormSubmitted(const blink::WebFormElement& form) override;
   void OnInferredFormSubmission(SubmissionSource source) override;

   // WebFrameClient editor related calls forwarded by AutofillAgent.
   // If they return true, it indicates the event was consumed and should not
   // be used for any other autofill activity.
   bool TextDidChangeInTextField(const blink::WebInputElement& element);

   // Function that should be called whenever the value of |element| changes due
   // to user input. This is separate from TextDidChangeInTextField() as that
   // function may trigger UI and should only be called when other UI won't be
   // shown.
   void UpdateStateForTextChange(const blink::WebInputElement& element);

   // Fills the username and password fields of this form with the given values.
   // Returns true if the fields were filled, false otherwise.
   bool FillSuggestion(const blink::WebFormControlElement& control_element,
                       const base::string16& username,
                       const base::string16& password);

   // Previews the username and password fields of this form with the given
   // values. Returns true if the fields were previewed, false otherwise.
   bool PreviewSuggestion(const blink::WebFormControlElement& node,
                          const blink::WebString& username,
                          const blink::WebString& password);

   // Clears the preview for the username and password fields, restoring both to
   // their previous filled state. Return false if no login information was
   // found for the form.
   bool DidClearAutofillSelection(
       const blink::WebFormControlElement& control_element);

   // Returns whether a "Login not secure" warning should be shown on the input
   // field. This is true if the feature is enabled and if the form is
   // non-secure.
   bool ShouldShowNotSecureWarning(const blink::WebInputElement& element);

   // Returns whether the element is a username or password textfield.
   bool IsUsernameOrPasswordField(const blink::WebInputElement& element);

   // Shows an Autofill popup with username suggestions for |element|. If
   // |show_all| is |true|, will show all possible suggestions for that element,
   // otherwise shows suggestions based on current value of |element|.
   // If |generation_popup_showing| is true, this function will return false
   // as both UIs should not be shown at the same time. This function should
   // still be called in this situation so that UMA stats can be logged.
   // Returns true if any suggestions were shown, false otherwise.
   bool ShowSuggestions(const blink::WebInputElement& element,
                        bool show_all,
                        bool generation_popup_showing);

   // Shows an Autofill-style popup with a warning that the form is not secure.
   // This UI is shown when a username or password field is autofilled or edited
   // on a non-secure page.
   void ShowNotSecureWarning(const blink::WebInputElement& element);

   // Shows an Autofill-style popup with an option to go to settings and check
   // all saved passwords. Returns true if the suggestion was shown, false
   // otherwise.
   bool ShowManualFallbackSuggestion(const blink::WebInputElement& element);

   // Called when new form controls are inserted.
   void OnDynamicFormsSeen();

   // Called when the user interacts with the page after a load. This is a
   // signal to make autofilled values of password input elements accessible to
   // JavaScript.
   void UserGestureObserved();

   // Given password form data |form_data| and a supplied key |key| for
   // referencing the password info, returns a set of WebInputElements in
   // |elements|, which must be non-null, that the password manager has values
   // for filling. Also takes an optional logger |logger| for logging password
   // autofill behavior.
   void GetFillableElementFromFormData(
       int key,
       const PasswordFormFillData& form_data,
       RendererSavePasswordProgressLogger* logger,
       std::vector<blink::WebInputElement>* elements);

   // Called when the focused node has changed.
   void FocusedNodeHasChanged(const blink::WebNode& node);

   // Creates a |PasswordForm| from |web_form|.
   std::unique_ptr<PasswordForm> GetPasswordFormFromWebForm(
       const blink::WebFormElement& web_form);

   // Creates a |PasswordForm| of fields that are not enclosed in any <form> tag.
   std::unique_ptr<PasswordForm> GetPasswordFormFromUnownedInputElements();

   bool logging_state_active() const { return logging_state_active_; }

   // Determine whether the current frame is allowed to access the password
   // manager. For example, frames with about:blank documents or documents with
   // unique origins aren't allowed access.
   virtual bool FrameCanAccessPasswordManager();

  private:
   // Ways to restrict which passwords are saved in ProvisionallySavePassword.
   enum ProvisionallySaveRestriction {
     RESTRICTION_NONE,
     RESTRICTION_NON_EMPTY_PASSWORD
   };

   struct PasswordInfo {
     blink::WebInputElement password_field;
     PasswordFormFillData fill_data;
     // The user manually edited the password more recently than the username was
     // changed.
     bool password_was_edited_last = false;
     // The user accepted a suggestion from a dropdown on a password field.
     bool password_field_suggestion_was_accepted = false;
     // The key under which PasswordAutofillManager can find info for filling.
     int key = -1;
   };
   typedef std::map<blink::WebInputElement, PasswordInfo>
       WebInputToPasswordInfoMap;
   typedef std::map<blink::WebElement, int> WebElementToPasswordInfoKeyMap;
   typedef std::map<blink::WebInputElement, blink::WebInputElement>
       PasswordToLoginMap;

   // This class keeps track of autofilled password input elements and makes sure
   // the autofilled password value is not accessible to JavaScript code until
   // the user interacts with the page.
   class PasswordValueGatekeeper {
    public:
     PasswordValueGatekeeper();
     ~PasswordValueGatekeeper();

     // Call this for every autofilled password field, so that the gatekeeper
     // protects the value accordingly.
     void RegisterElement(blink::WebInputElement* element);

     // Call this to notify the gatekeeper that the user interacted with the
     // page.
     void OnUserGesture();

     // Call this to reset the gatekeeper on a new page navigation.
     void Reset();

    private:
     // Make the value of |element| accessible to JavaScript code.
     void ShowValue(blink::WebInputElement* element);

     bool was_user_gesture_seen_;
     std::vector<blink::WebInputElement> elements_;

     DISALLOW_COPY_AND_ASSIGN(PasswordValueGatekeeper);
   };

   // RenderFrameObserver:
   void DidFinishDocumentLoad() override;
   void DidFinishLoad() override;
   void DidStartProvisionalLoad(
       blink::WebDocumentLoader* document_loader) override;
   void WillCommitProvisionalLoad() override;
   void DidCommitProvisionalLoad(bool is_new_navigation,
                                 bool is_same_document_navigation) override;
   void OnDestruct() override;

   // Scans the given frame for password forms and sends them up to the browser.
   // If |only_visible| is true, only forms visible in the layout are sent.
   void SendPasswordForms(bool only_visible);

   // Instructs the browser to show a pop-up suggesting which credentials could
   // be filled. |show_in_password_field| should indicate whether the pop-up is
   // to be shown on the password field instead of on the username field. If the
   // username exists, it should be passed as |user_input|. If there is no
   // username, pass the password field in |user_input|. In the latter case, no
   // username value will be shown in the pop-up.
   bool ShowSuggestionPopup(const PasswordInfo& password_info,
                            const blink::WebInputElement& user_input,
                            bool show_all,
                            bool show_on_password_field);

   // Finds the PasswordInfo, username and password fields corresponding to the
   // passed in |element|, which can refer to either a username or a password
   // element. If a PasswordInfo was found, returns |true| and assigns the
   // corresponding username, password elements and PasswordInfo into
   // |username_element|, |password_element| and |pasword_info|, respectively.
   // Note, that |username_element->IsNull()| can be true if |element| is a
   // password.
   bool FindPasswordInfoForElement(const blink::WebInputElement& element,
                                   blink::WebInputElement* username_element,
                                   blink::WebInputElement* password_element,
                                   PasswordInfo** password_info);

   // Invoked when the frame is closing.
   void FrameClosing();

   // Clears the preview for the username and password fields, restoring both to
   // their previous filled state.
   void ClearPreview(blink::WebInputElement* username,
                     blink::WebInputElement* password);

   // Saves |form| and |input| in |provisionally_saved_form_|, as long as it
   // satisfies |restriction|. |form| and |input| are the elements user has just
   // been interacting with before the form save. |form| or |input| can be null
   // but not both at the same time. For example: if the form is unowned, |form|
   // will be null; if the user has submitted the form, |input| will be null.
   void ProvisionallySavePassword(const blink::WebFormElement& form,
                                  const blink::WebInputElement& input,
                                  ProvisionallySaveRestriction restriction);

   // This function attempts to fill |username_element| and |password_element|
   // with values from |fill_data|. The |username_element| and |password_element|
   // will only have the suggestedValue set, and will be registered for copying
   // that to the real value through |registration_callback|. If a match is
   // found, return true and |field_value_and_properties_map| will be modified
   // with the autofilled credentials and |FieldPropertiesFlags::AUTOFILLED|
   // flag.
   bool FillUserNameAndPassword(
       blink::WebInputElement* username_element,
       blink::WebInputElement* password_element,
       const PasswordFormFillData& fill_data,
       bool exact_username_match,
       bool set_selection,
       FieldValueAndPropertiesMaskMap* field_value_and_properties_map,
       base::Callback<void(blink::WebInputElement*)> registration_callback,
       RendererSavePasswordProgressLogger* logger);

   // Attempts to fill |username_element| and |password_element| with the
   // |fill_data|. Will use the data corresponding to the preferred username,
   // unless the |username_element| already has a value set. In that case,
   // attempts to fill the password matching the already filled username, if
   // such a password exists. The |password_element| will have the
   // |suggestedValue| set, and |suggestedValue| will be registered for copying
   // to the real value through |registration_callback|. Returns true if the
   // password is filled.
   bool FillFormOnPasswordReceived(
       const PasswordFormFillData& fill_data,
       blink::WebInputElement username_element,
       blink::WebInputElement password_element,
       FieldValueAndPropertiesMaskMap* field_value_and_properties_map,
       base::Callback<void(blink::WebInputElement*)> registration_callback,
       RendererSavePasswordProgressLogger* logger);

   // Helper function called when form submission is successful.
   void FireSubmissionIfFormDisappear(
       PasswordForm::SubmissionIndicatorEvent event);

   void OnFrameDetached();
   void OnWillSubmitForm(const blink::WebFormElement& form);

   void HidePopup();

   // The logins we have filled so far with their associated info.
   WebInputToPasswordInfoMap web_input_to_password_info_;
   // A (sort-of) reverse map to |web_input_to_password_info_|.
   PasswordToLoginMap password_to_username_;
   // The chronologically last insertion into |web_input_to_password_info_|.
   WebInputToPasswordInfoMap::iterator last_supplied_password_info_iter_;

   // Set if the user might be submitting a password form on the current page,
   // but the submit may still fail (i.e. doesn't pass JavaScript validation).
   ProvisionallySavedPasswordForm provisionally_saved_form_;

   // Map WebFormControlElement to the pair of:
   // 1) The most recent text that user typed or PasswordManager autofilled in
   // input elements. Used for storing username/password before JavaScript
   // changes them.
   // 2) Field properties mask, i.e. whether the field was autofilled, modified
   // by user, etc. (see FieldPropertiesMask).
   FieldValueAndPropertiesMaskMap field_value_and_properties_map_;

   PasswordValueGatekeeper gatekeeper_;

   // True indicates that user debug information should be logged.
   bool logging_state_active_;

   // True indicates that the username field was autofilled, false otherwise.
   bool was_username_autofilled_;
   // True indicates that the password field was autofilled, false otherwise.
   bool was_password_autofilled_;

   // True indicates that a request for credentials has been sent to the store.
   bool sent_request_to_store_;

   // True indicates that a safe browsing reputation check has been triggered.
   bool checked_safe_browsing_reputation_;

   // Records the username typed before suggestions preview.
   base::string16 username_query_prefix_;

   // Contains server predictions for username, password and/or new password
   // fields for individual forms.
   FormsPredictionsMap form_predictions_;

   // The HTML based username detector's cache which maps form elements to
   // username predictions.
   UsernameDetectorCache username_detector_cache_;

   base::WeakPtr<AutofillAgent> autofill_agent_;

   PasswordGenerationAgent* password_generation_agent_;  // Weak reference.

 #if !defined(OS_ANDROID) && !defined(OS_IOS)
   PagePasswordsAnalyser page_passwords_analyser_;
 #endif

   mojom::PasswordManagerDriverPtr password_manager_driver_;

   mojo::Binding<mojom::PasswordAutofillAgent> binding_;

   bool blacklisted_form_found_ = false;

   DISALLOW_COPY_AND_ASSIGN(PasswordAutofillAgent);
 };

 }  // namespace autofill

 #endif  // COMPONENTS_AUTOFILL_CONTENT_RENDERER_PASSWORD_AUTOFILL_AGENT_H_
	// Copyright 2013 The Chromium Authors. All rights reserved.
	// Use of this source code is governed by a BSD-style license that can be
	// found in the LICENSE file.

	#ifndef COMPONENTS_AUTOFILL_CONTENT_RENDERER_PASSWORD_AUTOFILL_AGENT_H_
	#define COMPONENTS_AUTOFILL_CONTENT_RENDERER_PASSWORD_AUTOFILL_AGENT_H_

	#include <map>
	#include <memory>
	#include <vector>

	#include "base/macros.h"
	#include "base/memory/weak_ptr.h"
	#include "build/build_config.h"
	#include "components/autofill/content/common/autofill_agent.mojom.h"
	#include "components/autofill/content/common/autofill_driver.mojom.h"
	#include "components/autofill/content/renderer/autofill_agent.h"
	#include "components/autofill/content/renderer/form_tracker.h"
	#include "components/autofill/content/renderer/html_based_username_detector.h"
	#include "components/autofill/content/renderer/password_form_conversion_utils.h"
	#include "components/autofill/content/renderer/provisionally_saved_password_form.h"
	#include "components/autofill/core/common/form_data_predictions.h"
	#include "components/autofill/core/common/password_form.h"
	#include "components/autofill/core/common/password_form_field_prediction_map.h"
	#include "components/autofill/core/common/password_form_fill_data.h"
	#include "content/public/renderer/render_frame_observer.h"
	#include "content/public/renderer/render_view_observer.h"
	#include "mojo/public/cpp/bindings/binding.h"
	#include "services/service_manager/public/cpp/binder_registry.h"
	#include "third_party/WebKit/public/web/WebInputElement.h"

	#if !defined(OS_ANDROID) && !defined(OS_IOS)
	#include "components/autofill/content/renderer/page_passwords_analyser.h"
	#endif

	namespace blink {
	class WebInputElement;
	}

	namespace autofill {

	// Names of HTML attributes to show form and field signatures for debugging.
	extern const char kDebugAttributeForFormSignature[];
	extern const char kDebugAttributeForFieldSignature[];

	class RendererSavePasswordProgressLogger;
	class PasswordGenerationAgent;

	// This class is responsible for filling password forms.
	class PasswordAutofillAgent : public content::RenderFrameObserver,
	public FormTracker::Observer,
	public mojom::PasswordAutofillAgent {
	public:
	PasswordAutofillAgent(content::RenderFrame* render_frame,
	service_manager::BinderRegistry* registry);
	~PasswordAutofillAgent() override;

	void BindRequest(mojom::PasswordAutofillAgentRequest request);

	void SetAutofillAgent(AutofillAgent* autofill_agent);

	void SetPasswordGenerationAgent(PasswordGenerationAgent* generation_agent);

	const mojom::PasswordManagerDriverPtr& GetPasswordManagerDriver();

	// mojom::PasswordAutofillAgent:
	void FillPasswordForm(int key,
	const PasswordFormFillData& form_data) override;
	void SetLoggingState(bool active) override;
	void AutofillUsernameAndPasswordDataReceived(
	const FormsPredictionsMap& predictions) override;
	void FindFocusedPasswordForm(
	FindFocusedPasswordFormCallback callback) override;
	void BlacklistedFormFound() override;

	// FormTracker::Observer
	void OnProvisionallySaveForm(const blink::WebFormElement& form,
	const blink::WebInputElement& element,
	ElementChangeSource source) override;
	void OnProbablyFormSubmitted() override;
	void OnFormSubmitted(const blink::WebFormElement& form) override;
	void OnInferredFormSubmission(SubmissionSource source) override;

	// WebFrameClient editor related calls forwarded by AutofillAgent.
	// If they return true, it indicates the event was consumed and should not
	// be used for any other autofill activity.
	bool TextDidChangeInTextField(const blink::WebInputElement& element);

	// Function that should be called whenever the value of \|element\| changes due
	// to user input. This is separate from TextDidChangeInTextField() as that
	// function may trigger UI and should only be called when other UI won't be
	// shown.
	void UpdateStateForTextChange(const blink::WebInputElement& element);

	// Fills the username and password fields of this form with the given values.
	// Returns true if the fields were filled, false otherwise.
	bool FillSuggestion(const blink::WebFormControlElement& control_element,
	const base::string16& username,
	const base::string16& password);

	// Previews the username and password fields of this form with the given
	// values. Returns true if the fields were previewed, false otherwise.
	bool PreviewSuggestion(const blink::WebFormControlElement& node,
	const blink::WebString& username,
	const blink::WebString& password);

	// Clears the preview for the username and password fields, restoring both to
	// their previous filled state. Return false if no login information was
	// found for the form.
	bool DidClearAutofillSelection(
	const blink::WebFormControlElement& control_element);

	// Returns whether a "Login not secure" warning should be shown on the input
	// field. This is true if the feature is enabled and if the form is
	// non-secure.
	bool ShouldShowNotSecureWarning(const blink::WebInputElement& element);

	// Returns whether the element is a username or password textfield.
	bool IsUsernameOrPasswordField(const blink::WebInputElement& element);

	// Shows an Autofill popup with username suggestions for \|element\|. If
	// \|show_all\| is \|true\|, will show all possible suggestions for that element,
	// otherwise shows suggestions based on current value of \|element\|.
	// If \|generation_popup_showing\| is true, this function will return false
	// as both UIs should not be shown at the same time. This function should
	// still be called in this situation so that UMA stats can be logged.
	// Returns true if any suggestions were shown, false otherwise.
	bool ShowSuggestions(const blink::WebInputElement& element,
	bool show_all,
	bool generation_popup_showing);

	// Shows an Autofill-style popup with a warning that the form is not secure.
	// This UI is shown when a username or password field is autofilled or edited
	// on a non-secure page.
	void ShowNotSecureWarning(const blink::WebInputElement& element);

	// Shows an Autofill-style popup with an option to go to settings and check
	// all saved passwords. Returns true if the suggestion was shown, false
	// otherwise.
	bool ShowManualFallbackSuggestion(const blink::WebInputElement& element);

	// Called when new form controls are inserted.
	void OnDynamicFormsSeen();

	// Called when the user interacts with the page after a load. This is a
	// signal to make autofilled values of password input elements accessible to
	// JavaScript.
	void UserGestureObserved();

	// Given password form data \|form_data\| and a supplied key \|key\| for
	// referencing the password info, returns a set of WebInputElements in
	// \|elements\|, which must be non-null, that the password manager has values
	// for filling. Also takes an optional logger \|logger\| for logging password
	// autofill behavior.
	void GetFillableElementFromFormData(
	int key,
	const PasswordFormFillData& form_data,
	RendererSavePasswordProgressLogger* logger,
	std::vector<blink::WebInputElement>* elements);

	// Called when the focused node has changed.
	void FocusedNodeHasChanged(const blink::WebNode& node);

	// Creates a \|PasswordForm\| from \|web_form\|.
	std::unique_ptr<PasswordForm> GetPasswordFormFromWebForm(
	const blink::WebFormElement& web_form);

	// Creates a \|PasswordForm\| of fields that are not enclosed in any <form> tag.
	std::unique_ptr<PasswordForm> GetPasswordFormFromUnownedInputElements();

	bool logging_state_active() const { return logging_state_active_; }

	// Determine whether the current frame is allowed to access the password
	// manager. For example, frames with about:blank documents or documents with
	// unique origins aren't allowed access.
	virtual bool FrameCanAccessPasswordManager();

	private:
	// Ways to restrict which passwords are saved in ProvisionallySavePassword.
	enum ProvisionallySaveRestriction {
	RESTRICTION_NONE,
	RESTRICTION_NON_EMPTY_PASSWORD
	};

	struct PasswordInfo {
	blink::WebInputElement password_field;
	PasswordFormFillData fill_data;
	// The user manually edited the password more recently than the username was
	// changed.
	bool password_was_edited_last = false;
	// The user accepted a suggestion from a dropdown on a password field.
	bool password_field_suggestion_was_accepted = false;
	// The key under which PasswordAutofillManager can find info for filling.
	int key = -1;
	};
	typedef std::map<blink::WebInputElement, PasswordInfo>
	WebInputToPasswordInfoMap;
	typedef std::map<blink::WebElement, int> WebElementToPasswordInfoKeyMap;
	typedef std::map<blink::WebInputElement, blink::WebInputElement>
	PasswordToLoginMap;

	// This class keeps track of autofilled password input elements and makes sure
	// the autofilled password value is not accessible to JavaScript code until
	// the user interacts with the page.
	class PasswordValueGatekeeper {
	public:
	PasswordValueGatekeeper();
	~PasswordValueGatekeeper();

	// Call this for every autofilled password field, so that the gatekeeper
	// protects the value accordingly.
	void RegisterElement(blink::WebInputElement* element);

	// Call this to notify the gatekeeper that the user interacted with the
	// page.
	void OnUserGesture();

	// Call this to reset the gatekeeper on a new page navigation.
	void Reset();

	private:
	// Make the value of \|element\| accessible to JavaScript code.
	void ShowValue(blink::WebInputElement* element);

	bool was_user_gesture_seen_;
	std::vector<blink::WebInputElement> elements_;

	DISALLOW_COPY_AND_ASSIGN(PasswordValueGatekeeper);
	};

	// RenderFrameObserver:
	void DidFinishDocumentLoad() override;
	void DidFinishLoad() override;
	void DidStartProvisionalLoad(
	blink::WebDocumentLoader* document_loader) override;
	void WillCommitProvisionalLoad() override;
	void DidCommitProvisionalLoad(bool is_new_navigation,
	bool is_same_document_navigation) override;
	void OnDestruct() override;

	// Scans the given frame for password forms and sends them up to the browser.
	// If \|only_visible\| is true, only forms visible in the layout are sent.
	void SendPasswordForms(bool only_visible);

	// Instructs the browser to show a pop-up suggesting which credentials could
	// be filled. \|show_in_password_field\| should indicate whether the pop-up is
	// to be shown on the password field instead of on the username field. If the
	// username exists, it should be passed as \|user_input\|. If there is no
	// username, pass the password field in \|user_input\|. In the latter case, no
	// username value will be shown in the pop-up.
	bool ShowSuggestionPopup(const PasswordInfo& password_info,
	const blink::WebInputElement& user_input,
	bool show_all,
	bool show_on_password_field);

	// Finds the PasswordInfo, username and password fields corresponding to the
	// passed in \|element\|, which can refer to either a username or a password
	// element. If a PasswordInfo was found, returns \|true\| and assigns the
	// corresponding username, password elements and PasswordInfo into
	// \|username_element\|, \|password_element\| and \|pasword_info\|, respectively.
	// Note, that \|username_element->IsNull()\| can be true if \|element\| is a
	// password.
	bool FindPasswordInfoForElement(const blink::WebInputElement& element,
	blink::WebInputElement* username_element,
	blink::WebInputElement* password_element,
	PasswordInfo** password_info);

	// Invoked when the frame is closing.
	void FrameClosing();

	// Clears the preview for the username and password fields, restoring both to
	// their previous filled state.
	void ClearPreview(blink::WebInputElement* username,
	blink::WebInputElement* password);

	// Saves \|form\| and \|input\| in \|provisionally_saved_form_\|, as long as it
	// satisfies \|restriction\|. \|form\| and \|input\| are the elements user has just
	// been interacting with before the form save. \|form\| or \|input\| can be null
	// but not both at the same time. For example: if the form is unowned, \|form\|
	// will be null; if the user has submitted the form, \|input\| will be null.
	void ProvisionallySavePassword(const blink::WebFormElement& form,
	const blink::WebInputElement& input,
	ProvisionallySaveRestriction restriction);

	// This function attempts to fill \|username_element\| and \|password_element\|
	// with values from \|fill_data\|. The \|username_element\| and \|password_element\|
	// will only have the suggestedValue set, and will be registered for copying
	// that to the real value through \|registration_callback\|. If a match is
	// found, return true and \|field_value_and_properties_map\| will be modified
	// with the autofilled credentials and \|FieldPropertiesFlags::AUTOFILLED\|
	// flag.
	bool FillUserNameAndPassword(
	blink::WebInputElement* username_element,
	blink::WebInputElement* password_element,
	const PasswordFormFillData& fill_data,
	bool exact_username_match,
	bool set_selection,
	FieldValueAndPropertiesMaskMap* field_value_and_properties_map,
	base::Callback<void(blink::WebInputElement*)> registration_callback,
	RendererSavePasswordProgressLogger* logger);

	// Attempts to fill \|username_element\| and \|password_element\| with the
	// \|fill_data\|. Will use the data corresponding to the preferred username,
	// unless the \|username_element\| already has a value set. In that case,
	// attempts to fill the password matching the already filled username, if
	// such a password exists. The \|password_element\| will have the
	// \|suggestedValue\| set, and \|suggestedValue\| will be registered for copying
	// to the real value through \|registration_callback\|. Returns true if the
	// password is filled.
	bool FillFormOnPasswordReceived(
	const PasswordFormFillData& fill_data,
	blink::WebInputElement username_element,
	blink::WebInputElement password_element,
	FieldValueAndPropertiesMaskMap* field_value_and_properties_map,
	base::Callback<void(blink::WebInputElement*)> registration_callback,
	RendererSavePasswordProgressLogger* logger);

	// Helper function called when form submission is successful.
	void FireSubmissionIfFormDisappear(
	PasswordForm::SubmissionIndicatorEvent event);

	void OnFrameDetached();
	void OnWillSubmitForm(const blink::WebFormElement& form);

	void HidePopup();

	// The logins we have filled so far with their associated info.
	WebInputToPasswordInfoMap web_input_to_password_info_;
	// A (sort-of) reverse map to \|web_input_to_password_info_\|.
	PasswordToLoginMap password_to_username_;
	// The chronologically last insertion into \|web_input_to_password_info_\|.
	WebInputToPasswordInfoMap::iterator last_supplied_password_info_iter_;

	// Set if the user might be submitting a password form on the current page,
	// but the submit may still fail (i.e. doesn't pass JavaScript validation).
	ProvisionallySavedPasswordForm provisionally_saved_form_;

	// Map WebFormControlElement to the pair of:
	// 1) The most recent text that user typed or PasswordManager autofilled in
	// input elements. Used for storing username/password before JavaScript
	// changes them.
	// 2) Field properties mask, i.e. whether the field was autofilled, modified
	// by user, etc. (see FieldPropertiesMask).
	FieldValueAndPropertiesMaskMap field_value_and_properties_map_;

	PasswordValueGatekeeper gatekeeper_;

	// True indicates that user debug information should be logged.
	bool logging_state_active_;

	// True indicates that the username field was autofilled, false otherwise.
	bool was_username_autofilled_;
	// True indicates that the password field was autofilled, false otherwise.
	bool was_password_autofilled_;

	// True indicates that a request for credentials has been sent to the store.
	bool sent_request_to_store_;

	// True indicates that a safe browsing reputation check has been triggered.
	bool checked_safe_browsing_reputation_;

	// Records the username typed before suggestions preview.
	base::string16 username_query_prefix_;

	// Contains server predictions for username, password and/or new password
	// fields for individual forms.
	FormsPredictionsMap form_predictions_;

	// The HTML based username detector's cache which maps form elements to
	// username predictions.
	UsernameDetectorCache username_detector_cache_;

	base::WeakPtr<AutofillAgent> autofill_agent_;

	PasswordGenerationAgent* password_generation_agent_; // Weak reference.

	#if !defined(OS_ANDROID) && !defined(OS_IOS)
	PagePasswordsAnalyser page_passwords_analyser_;
	#endif

	mojom::PasswordManagerDriverPtr password_manager_driver_;

	mojo::Binding<mojom::PasswordAutofillAgent> binding_;

	bool blacklisted_form_found_ = false;

	DISALLOW_COPY_AND_ASSIGN(PasswordAutofillAgent);
	};

	} // namespace autofill

	#endif // COMPONENTS_AUTOFILL_CONTENT_RENDERER_PASSWORD_AUTOFILL_AGENT_H_