chrome/renderer/extensions/user_script_slave.h - Issue 7071025: Use WebFrame::setIsolatedWorldSecurityOrigin to allow cross-origin XHRs in content scripts.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: chrome/renderer/extensions/user_script_slave.h

Issue 7071025: Use WebFrame::setIsolatedWorldSecurityOrigin to allow cross-origin XHRs in content scripts. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src

Patch Set: Remove ExtensionOriginEntry Created 9 years, 7 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « chrome/browser/extensions/cross_origin_xhr_apitest.cc ('k') | chrome/renderer/extensions/user_script_slave.cc » ('j') | chrome/renderer/extensions/user_script_slave.cc » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: chrome/renderer/extensions/user_script_slave.h

diff --git a/chrome/renderer/extensions/user_script_slave.h b/chrome/renderer/extensions/user_script_slave.h

index f5037ac675c231e441e4f87b7ce6807c8a13f24c..53bcb058ad2710419d7397b9de5bc61d4cb94cc2 100644

--- a/chrome/renderer/extensions/user_script_slave.h

+++ b/chrome/renderer/extensions/user_script_slave.h

@@ -6,6 +6,7 @@

#define CHROME_RENDERER_EXTENSIONS_USER_SCRIPT_SLAVE_H_

#pragma once

+#include <map>

#include <set>

#include <string>

#include <vector>

@@ -17,6 +18,7 @@

#include "chrome/common/extensions/user_script.h"

#include "third_party/WebKit/Source/WebKit/chromium/public/WebScriptSource.h"

+class Extension;

class ExtensionSet;

namespace WebKit {

@@ -28,7 +30,7 @@ using WebKit::WebScriptSource;

// Manages installed UserScripts for a render process.

class UserScriptSlave {

public:

- UserScriptSlave(const ExtensionSet* extensions);

+ explicit UserScriptSlave(const ExtensionSet* extensions);

~UserScriptSlave();

// Returns the unique set of extension IDs this UserScriptSlave knows about.

@@ -47,6 +49,10 @@ class UserScriptSlave {

static void InsertInitExtensionCode(std::vector<WebScriptSource>* sources,

const std::string& extension_id);

private:

+ void InitializeIsolatedWorld(WebKit::WebFrame* frame,

+ int isolated_world_id,

+ const Extension* extension);

// Shared memory containing raw script data.

scoped_ptr<base::SharedMemory> shared_memory_;

@@ -60,6 +66,17 @@ class UserScriptSlave {

// Extension metadata.

const ExtensionSet* extensions_;

+ // Map from WebFrame identifier to its origin, used to allow the extension

+ // origin access to the frame (and to disallow once the frame's URL changes)

+ typedef std::map<long long, std::pair<std::string, std::string> >

+ FrameOriginMap;

+ FrameOriginMap frame_origins_;

+ // Map from extension ID to host permissions that have been whitelisted for

+ // it. Used to avoid whitelisting an origin more than once.

+ typedef std::multimap<std::string, URLPattern> ExtensionOriginMap;

+ ExtensionOriginMap extension_origins_;

DISALLOW_COPY_AND_ASSIGN(UserScriptSlave);

};