selenium: Headless browser unit tests

Signed-off-by: Simon Bennetts <psiinon@gmail.com>

Author: psiinon

addOns/selenium/selenium.gradle.kts

@@ -62,3 +62,25 @@ dependencies {
 
     testImplementation(project(":testutils"))
 }
+
+val webdriverProjectPath =
+    when {
+        org.gradle.internal.os.OperatingSystem.current().isMacOsX -> ":addOns:webdrivers:webdrivermacos"
+        org.gradle.internal.os.OperatingSystem.current().isLinux -> ":addOns:webdrivers:webdriverlinux"
+        else -> ":addOns:webdrivers:webdriverwindows"
+    }
+
+tasks.register<Sync>("prepareTestWebdrivers") {
+    val wdProject = project(webdriverProjectPath)
+    dependsOn(wdProject.tasks.named("generateZapAddOnManifest"))
+    from(wdProject.layout.buildDirectory.dir("webdrivers"))
+    into(layout.buildDirectory.dir("test-zap-webdrivers"))
+}
+
+tasks.withType<Test>().configureEach {
+    if (name == "test") {
+        dependsOn("prepareTestWebdrivers")
+        systemProperties["zap.test.webdrivers.home"] =
+            layout.buildDirectory.dir("test-zap-webdrivers").get().asFile.absolutePath
+    }
+}

addOns/selenium/src/main/java/org/zaproxy/zap/extension/selenium/ExtensionSelenium.java

@@ -922,6 +922,25 @@ public WebDriver getWebDriver(String browserId, DriverConfiguration driverConf)
                     "Unknown ProvidedBrowser: " + provided.getClass().getCanonicalName());
         }
 
+        if (driverConf.getPreferences() != null && !driverConf.getPreferences().isEmpty()) {
+            Map<String, String> merged = new HashMap<>(config.getPreferences());
+            merged.putAll(driverConf.getPreferences());
+            config =
+                    DriverConfiguration.builder()
+                            .requester(config.getRequester())
+                            .proxyAddress(config.getProxyAddress())
+                            .proxyPort(config.getProxyPort())
+                            .consumer(config.getConsumer())
+                            .type(config.getType())
+                            .headless(config.isHeadless())
+                            .binaryPath(config.getBinaryPath())
+                            .driverPath(config.getDriverPath())
+                            .arguments(config.getArguments())
+                            .preferences(merged)
+                            .enableExtensions(config.isEnableExtensions())
+                            .build();
+        }
+
         try {
             wd = createWebDriver(config);
             Stats.incCounter(statsKey);

addOns/selenium/src/test/java/org/zaproxy/zap/extension/selenium/HeadlessBrowsersUnitTest.java

@@ -0,0 +1,272 @@
+/*
+ * Zed Attack Proxy (ZAP) and its related class files.
+ *
+ * ZAP is an HTTP/HTTPS proxy for assessing web application security.
+ *
+ * Copyright 2026 The ZAP Development Team
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package org.zaproxy.zap.extension.selenium;
+
+import static fi.iki.elonen.NanoHTTPD.newFixedLengthResponse;
+import static org.hamcrest.MatcherAssert.assertThat;
+import static org.hamcrest.Matchers.containsString;
+import static org.hamcrest.Matchers.greaterThanOrEqualTo;
+import static org.hamcrest.Matchers.is;
+import static org.mockito.BDDMockito.given;
+import static org.mockito.Mockito.mock;
+import static org.mockito.Mockito.withSettings;
+
+import fi.iki.elonen.NanoHTTPD;
+import java.io.ByteArrayInputStream;
+import java.io.IOException;
+import java.nio.file.Files;
+import java.nio.file.Paths;
+import java.util.Collections;
+import java.util.Map;
+import java.util.stream.Stream;
+import org.junit.jupiter.api.AfterEach;
+import org.junit.jupiter.api.BeforeAll;
+import org.junit.jupiter.api.BeforeEach;
+import org.junit.jupiter.params.ParameterizedTest;
+import org.junit.jupiter.params.provider.MethodSource;
+import org.mockito.quality.Strictness;
+import org.openqa.selenium.WebDriver;
+import org.parosproxy.paros.control.Control;
+import org.parosproxy.paros.extension.ExtensionHook;
+import org.parosproxy.paros.extension.ExtensionLoader;
+import org.parosproxy.paros.model.Model;
+import org.parosproxy.paros.model.OptionsParam;
+import org.parosproxy.paros.model.Session;
+import org.zaproxy.addon.network.ExtensionNetwork;
+import org.zaproxy.zap.testutils.NanoServerHandler;
+import org.zaproxy.zap.testutils.TestUtils;
+import org.zaproxy.zap.utils.ZapXmlConfiguration;
+
+/**
+ * Unit tests that verify Chrome, Edge, and Firefox headless browsers can be launched and access a
+ * simple web page.
+ */
+class HeadlessBrowsersUnitTest extends TestUtils {
+
+    private static final String PAGE_TITLE = "Test Page";
+    private static final String PAGE_BODY_MARKER = "Headless browser test content";
+
+    private static final String IMAGE_PATH = "/test.png";
+    private static final String PAGE_WITH_IMAGE_PATH = "/page-with-image.html";
+
+    // These env vars should be set up when running in GitHub CI
+    private static final String CHROME_WEB_DRIVER = System.getenv("CHROMEWEBDRIVER");
+    private static final String EDGE_WEB_DRIVER = System.getenv("EDGEWEBDRIVER");
+    private static final String GECKO_WEB_DRIVER = System.getenv("GECKOWEBDRIVER");
+
+    private byte[] imageBytes;
+
+    private static byte[] loadImageFromResource() throws IOException {
+        return Files.readAllBytes(
+                TestUtils.getResourcePath(HeadlessBrowsersUnitTest.class, "test.png"));
+    }
+
+    private static ExtensionNetwork extensionNetwork;
+    private static Model model;
+    private static Session session;
+
+    @BeforeAll
+    static void setupAll() {
+        if (CHROME_WEB_DRIVER == null) {
+            // Assume we are running locally
+            String webdriversHome = System.getProperty("zap.test.webdrivers.home");
+            if (webdriversHome != null && !webdriversHome.isEmpty()) {
+                Browser.setZapHomeDir(Paths.get(webdriversHome));
+            }
+        }
+    }
+
+    @BeforeEach
+    void setUp() throws Exception {
+        mockMessages(new ExtensionSelenium());
+        setUpZap();
+        model = mock(Model.class, withSettings().strictness(Strictness.LENIENT));
+        Model.setSingletonForTesting(model);
+        given(model.getOptionsParam()).willReturn(new OptionsParam());
+        extensionNetwork = new ExtensionNetwork();
+        ExtensionSelenium extensionSelenium = new ExtensionSelenium();
+        extensionNetwork.initModel(model);
+        ExtensionLoader extensionLoader =
+                mock(ExtensionLoader.class, withSettings().strictness(Strictness.LENIENT));
+        Control.initSingletonForTesting(model, extensionLoader);
+
+        given(extensionLoader.getExtension(ExtensionSelenium.class)).willReturn(extensionSelenium);
+        extensionSelenium.init();
+
+        extensionNetwork.init();
+        extensionNetwork.hook(new ExtensionHook(model, null));
+
+        model.getOptionsParam().load(new ZapXmlConfiguration());
+        SeleniumOptions options = new SeleniumOptions();
+        if (CHROME_WEB_DRIVER != null) {
+            options.setChromeDriverPath(CHROME_WEB_DRIVER);
+        }
+        if (EDGE_WEB_DRIVER != null) {
+            options.setEdgeDriverPath(EDGE_WEB_DRIVER);
+        }
+        if (GECKO_WEB_DRIVER != null) {
+            options.setFirefoxDriverPath(GECKO_WEB_DRIVER);
+        }
+        model.getOptionsParam().addParamSet(options);
+
+        session = new Session(model);
+        given(model.getSession()).willReturn(session);
+
+        startServer();
+        imageBytes = loadImageFromResource();
+        // More specific paths first (server matches by uri.startsWith(handler.getName()))
+        nano.addHandler(
+                new NanoServerHandler(IMAGE_PATH) {
+                    @Override
+                    protected NanoHTTPD.Response serve(NanoHTTPD.IHTTPSession session) {
+                        return newFixedLengthResponse(
+                                NanoHTTPD.Response.Status.OK,
+                                "image/png",
+                                new ByteArrayInputStream(imageBytes),
+                                imageBytes.length);
+                    }
+                });
+        nano.addHandler(
+                new NanoServerHandler(PAGE_WITH_IMAGE_PATH) {
+                    @Override
+                    protected NanoHTTPD.Response serve(NanoHTTPD.IHTTPSession session) {
+                        String html =
+                                "<html><head><title>Page With Image</title></head><body>"
+                                        + "<img src=\"http://localhost:"
+                                        + nano.getListeningPort()
+                                        + IMAGE_PATH
+                                        + "\" alt=\"test\"></body></html>";
+                        return newFixedLengthResponse(html);
+                    }
+                });
+        nano.addHandler(
+                new NanoServerHandler("/") {
+                    @Override
+                    protected NanoHTTPD.Response serve(NanoHTTPD.IHTTPSession session) {
+                        return newFixedLengthResponse(
+                                "<html><head><title>"
+                                        + PAGE_TITLE
+                                        + "</title></head><body>"
+                                        + PAGE_BODY_MARKER
+                                        + "</body></html>");
+                    }
+                });
+    }
+
+    @AfterEach
+    void tearDown() throws Exception {
+        stopServer();
+        Browser.setZapHomeDir(null);
+        extensionNetwork.stop();
+    }
+
+    static Stream<String> headlessBrowsers() {
+        // TODO temp testing
+        // return Stream.of("chrome-headless", "firefox-headless", "edge-headless");
+        return Stream.of("chrome-headless", "firefox-headless");
+    }
+
+    @ParameterizedTest
+    @MethodSource("headlessBrowsers")
+    void shouldAccessSimpleWebPageWithHeadlessBrowser(String browserId) throws IOException {
+        ExtensionSelenium extensionSelenium =
+                Control.getSingleton().getExtensionLoader().getExtension(ExtensionSelenium.class);
+        String url = "http://localhost:" + nano.getListeningPort() + "/";
+
+        WebDriver driver = null;
+        try {
+            driver =
+                    extensionSelenium.getWebDriver(
+                            browserId, DriverConfiguration.builder().build());
+            driver.get(url);
+
+            assertThat(driver.getTitle(), is(PAGE_TITLE));
+            assertThat(driver.getPageSource(), containsString(PAGE_BODY_MARKER));
+        } finally {
+            if (driver != null) {
+                driver.quit();
+            }
+        }
+    }
+
+    @ParameterizedTest
+    @MethodSource("headlessBrowsers")
+    void shouldRequestImageWhenPageContainsImage(String browserId) throws IOException {
+        ExtensionSelenium extensionSelenium =
+                Control.getSingleton().getExtensionLoader().getExtension(ExtensionSelenium.class);
+        String url = "http://localhost:" + nano.getListeningPort() + PAGE_WITH_IMAGE_PATH;
+
+        WebDriver driver = null;
+        try {
+            driver =
+                    extensionSelenium.getWebDriver(
+                            browserId, DriverConfiguration.builder().build());
+            driver.get(url);
+
+            assertThat(
+                    "Browser should request the image when loading the page",
+                    Collections.frequency(nano.getRequestedUris(), IMAGE_PATH),
+                    greaterThanOrEqualTo(1));
+        } finally {
+            if (driver != null) {
+                driver.quit();
+            }
+        }
+    }
+
+    /**
+     * Returns browser preferences that disable image loading. Chrome/Edge use the same Chromium
+     * pref ({@code profile.default_content_setting_values.images} = 2). Firefox uses {@code
+     * permissions.default.image} = 2 (may not work in all Firefox versions).
+     */
+    private static Map<String, String> getPreferencesToBlockImages(String browserId) {
+        if (browserId.startsWith("firefox")) {
+            return Map.of("permissions.default.image", "2");
+        }
+        return Map.of("profile.default_content_setting_values.images", "2");
+    }
+
+    @ParameterizedTest
+    @MethodSource("headlessBrowsers")
+    void shouldNotRequestImageWhenPreferenceBlocksImages(String browserId) throws IOException {
+        ExtensionSelenium extensionSelenium =
+                Control.getSingleton().getExtensionLoader().getExtension(ExtensionSelenium.class);
+        String url = "http://localhost:" + nano.getListeningPort() + PAGE_WITH_IMAGE_PATH;
+        Map<String, String> blockImagesPrefs = getPreferencesToBlockImages(browserId);
+
+        WebDriver driver = null;
+        try {
+            driver =
+                    extensionSelenium.getWebDriver(
+                            browserId,
+                            DriverConfiguration.builder().preferences(blockImagesPrefs).build());
+            driver.get(url);
+
+            assertThat(
+                    "Browser should not request the image when prefs block images",
+                    Collections.frequency(nano.getRequestedUris(), IMAGE_PATH),
+                    is(0));
+        } finally {
+            if (driver != null) {
+                driver.quit();
+            }
+        }
+    }
+}