Mac client-side SSL cert improvements.

Allow Netscape-style client certs.
Remember which identity the user chooses for a domain, and put it at the top of the list next time.
BUG=36316,36446
TEST=none

Review URL: http://codereview.chromium.org/651090

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@39904 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 4 insertions, 0 deletions

diff --git a/chrome/browser/ssl/ssl_client_auth_handler_mac.mm b/chrome/browser/ssl/ssl_client_auth_handler_mac.mm
index 6908074..cde8acc 100644
--- a/chrome/browser/ssl/ssl_client_auth_handler_mac.mm
+++ b/chrome/browser/ssl/ssl_client_auth_handler_mac.mm
@@ -10,6 +10,7 @@
 #include "base/scoped_cftyperef.h"
 #include "base/scoped_nsobject.h"
 #include "base/string_util.h"
+#include "base/sys_string_conversions.h"
 #include "chrome/browser/chrome_thread.h"
 #include "grit/generated_resources.h"
 #include "net/base/x509_certificate.h"
@@ -38,6 +39,9 @@ void SSLClientAuthHandler::DoSelectCertificate() {
   // Create and set up a system choose-identity panel.
   scoped_nsobject<SFChooseIdentityPanel> panel (
       [[SFChooseIdentityPanel alloc] init]);
+  NSString* domain = base::SysUTF8ToNSString(
+      "https://" + cert_request_info_->host_and_port);
+  [panel setDomain:domain];
   [panel setInformativeText:message];
   [panel setAlternateButtonTitle:l10n_util::GetNSString(IDS_CANCEL)];
   SecPolicyRef sslPolicy;