Handle .onions in all contexts

[tildelowengrimm]

Description

It seems generally unlikely that anyone entering a .onion address into the address bar means to browse to that site without Tor or to make DNS requests regarding it. When someone does so, we should probably treat it as an oversight. At the very least, we should not tell anyone else about it (no DNS lookups, for instance). But perhaps we should do more and provide a useful notification or even smoothly redirect them to a Private Window with Tor?

Design

Show a "Open in Tor" button in the URL bar when user enters a .onion address or address with .onion available.

Dark Theme

Dark theme is supported:

Assets

Figma: https://www.figma.com/file/5THkuEtO2Ewn9LfqrHZP9a/?node-id=0%3A1

[Mikaela]

The RFC on .onions agrees with you.

   2.  Application Software: Applications (including proxies) that
       implement the Tor protocol MUST recognize .onion names as special
       by either accessing them directly or using a proxy (e.g., SOCKS
       [RFC1928]) to do so.  Applications that do not implement the Tor
       protocol SHOULD generate an error upon the use of .onion and
       SHOULD NOT perform a DNS lookup.

From RFC 7686 - The ".onion" Special-Use Domain Name

[srirambv]

+1 from #1460 for auto switch for .onion domains

[asddsaz]

Since .onion domains have very high levels of anonymity in the first place. You should be able to just send it to 127.0.0.1:9050 if TOR is running. For I2p many people utilize Foxy Proxy to auto-utilize I2p for .i2p domains (same can be done for .onion domains). Something similar could be done for Brave. This would be an awesome feature to have by default.

[librarymd]

Supporting .onion addresses in all contexts would be a game-changer for Brave as a browser. There is no browser doing that yet. To be honest, having a separate private Tor window is too much hassle. There is already TorBrowser as a separate window.
Navigating privacy friendly .onion addresses should be as easy as navigating normal web, not harder.

[tildelowengrimm]

I'm embarrassed that I didn't think of this before. I think it makes sense to treat .onion sites just like any other site if you open it in a non-private window. No need to make a big deal out of it, just quietly use Tor behind the scenes and modify the security indicator to indicate that Brave is relying on the onion protocol rather than HTTPS.

[bsclifton]

+1 from @Merith-TK via #7078

Description

So the idea kinda follows along the lines of this
when you click on a tornet link, (.onion), or enter a .onion address in your browser, have a small popup that asks if you want to actually go to this adress, and if the user clicks "Yes" open a tortab with that URL

Or maybe set a default page or persistance book marks

[karenkliu]

Designs added!

[LaurenWags]

Verification in progress with

Brave	1.17.65 Chromium: 87.0.4280.49 (Official Build) unknown (x86_64)
Revision	f77f85899646b42a1d3c8ff36794e00becab9171-refs/branch-heads/4280@{#1115}
OS	macOS Version 10.14.6 (Build 18G6032)

Verified test plan from brave/brave-core#6762

Logged the following issues:

• [Desktop] "Open in Tor" button needs minor UI polish when window is not in focus #12610

Encountered the following issues:

• Opening link in new private window with Tor for first time leaves spurious new tab #4299 / [Desktop] Open link in New Tor Private Window via context menu opens a tab with new tab #11611

onion-location header:

Non Tor window

Checked for Normal, Private, Guest windows:

Tor window

Checked for Tor window:

Tor disabled

Checked for Normal, Private, Guest windows:

Brave	1.17.67 Chromium: 87.0.4280.49 (Official Build) unknown (x86_64)
Revision	f77f85899646b42a1d3c8ff36794e00becab9171-refs/branch-heads/4280@{#1115}
OS	macOS Version 10.14.6 (Build 18G6032)

onion-location header:

Automatically redirect .onion site - Non Tor window

Default value of Automatically redirect .onion sites is off:

Enabled this setting and checked test plan from PR for Normal, Private, Guest windows. Confirmed when tab containing brave.com was not the only tab in the window, it was closed

Tab w/ brave.com was not the only tab in the window, so the tab was closed:

Tab w/ brave.com was the only tab in the window, so the tab was not closed:

Tab w/ brave.com was not the only tab in the window, so the tab was closed:

Tab w/ brave.com was the only tab in the window, so the tab was not closed:

Does not work for Guest window. Logged #12644.

Automatically redirect .onion site - Tor window

Tab w/ brave.com was not the only tab in the window, so the tab was closed:

Tab w/ brave.com was the only tab in the window, so the tab was not closed:

.onion domain:
*note - does not require "Automatically redirect .onion sites" to be toggled ON

Non Tor window

Verified for Normal, Private, Guest windows:

Tor window

Tor is disabled

---

Verification passed on

Brave	1.17.68 Chromium: 87.0.4280.49 (Oficjalna wersja) (64-bitowa)
Wersja	f77f85899646b42a1d3c8ff36794e00becab9171-refs/branch-heads/4280@{#1115}
System operacyjny	Windows 7 Service Pack 1 (Build 7601.24544)

Verified test plan from brave/brave-core#6762

onion-location header:

Non Tor window

Checked for Normal, Private, Guest windows:

Tor window

Checked for Tor window:

Tor disabled

Checked for Normal, Private, Guest windows:

[Madis0]

address with .onion available

Why is this icon needed when the user is not in a Tor window and not typing .onion, just browsing a site that has one? I imagine a lot of Facebook and DuckDuckGo users getting accidentally redirected to Tor window and not knowing why it was suggested...