Remove Feature for "insecure policies"

It's been fully launched. Fixed: 1084222 Change-Id: I2f0ede68468e1abac295f902fa64962fba15bc8a Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2514498 Commit-Queue: Avi Drissman <avi@chromium.org> Commit-Queue: Julian Pastarmov <pastarmovj@chromium.org> Auto-Submit: Avi Drissman <avi@chromium.org> Reviewed-by: Julian Pastarmov <pastarmovj@chromium.org> Cr-Commit-Position: refs/heads/master@{#823233}

Remove Feature for "insecure policies"
It's been fully launched. Fixed: 1084222 Change-Id: I2f0ede68468e1abac295f902fa64962fba15bc8a Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2514498 Commit-Queue: Avi Drissman <avi@chromium.org> Commit-Queue: Julian Pastarmov <pastarmovj@chromium.org> Auto-Submit: Avi Drissman <avi@chromium.org> Reviewed-by: Julian Pastarmov <pastarmovj@chromium.org> Cr-Commit-Position: refs/heads/master@{#823233}
b8da147c · Avi Drissman · Commit Bot · 92891bd7 · b8da147c · b8da147c
Commit b8da147c authored Nov 02, 2020 by Avi Drissman Committed by Commit Bot Nov 02, 2020
3 changed files
--- a/components/policy/core/common/features.cc
+++ b/components/policy/core/common/features.cc
@@ -14,11 +14,6 @@ const base::Feature kCBCMPolicyInvalidations{"CBCMPolicyInvalidations",
 const base::Feature kCBCMRemoteCommands{"CBCMRemoteCommands",
                                        base::FEATURE_DISABLED_BY_DEFAULT};

-#if defined(OS_APPLE)
-const base::Feature kIgnoreSensitivePoliciesOnUnmanagedMac{
-    "IgnoreSensitivePoliciesOnUnmanagedMac", base::FEATURE_ENABLED_BY_DEFAULT};
-#endif
-
 }  // namespace features

 }  // namespace policy
--- a/components/policy/core/common/features.h
+++ b/components/policy/core/common/features.h
@@ -12,12 +12,6 @@
 namespace policy {
 namespace features {

-#if defined(OS_APPLE)
-// Feature that controls whether the browser ignores sensitive policies on an
-// unmanaged Mac.
-POLICY_EXPORT extern const base::Feature kIgnoreSensitivePoliciesOnUnmanagedMac;
-#endif
-
 // Feature that controls whether the browser registers for FCM invalidations for
 // Machine Level Policies. If enabled, |kCBCMServiceAccounts| must also be
 // enabled.

--- a/components/policy/core/common/policy_loader_mac.mm
+++ b/components/policy/core/common/policy_loader_mac.mm
@@ -146,11 +146,8 @@ std::unique_ptr<PolicyBundle> PolicyLoaderMac::Load() {
  // Load policy for the registered components.
  LoadPolicyForDomain(POLICY_DOMAIN_EXTENSIONS, "extensions", bundle.get());

-  if (base::FeatureList::IsEnabled(
-          policy::features::kIgnoreSensitivePoliciesOnUnmanagedMac) &&
-      !ShouldHonorPolicies()) {
+  if (!ShouldHonorPolicies())
    FilterSensitivePolicies(&chrome_policy);
-  }

  return bundle;
 }