| Index: chrome/renderer/extensions/extension_resource_request_policy.cc
|
| ===================================================================
|
| --- chrome/renderer/extensions/extension_resource_request_policy.cc (revision 113054)
|
| +++ chrome/renderer/extensions/extension_resource_request_policy.cc (working copy)
|
| @@ -38,6 +38,15 @@
|
| return false;
|
| }
|
|
|
| + // Disallow loading of extension resources which are not explicitely listed
|
| + // as web accessible if the manifest version is 2 or greater.
|
| + if (extension->manifest_version() >= 2 &&
|
| + !extension->CanWebAccessResource(resource_url.path())) {
|
| + LOG(ERROR) << "Denying load of " << resource_url.spec() << " which "
|
| + << "is not a web accessible resource.";
|
| + return false;
|
| + }
|
| +
|
| return true;
|
| }
|
|
|
|
|
Chromium Code Reviews
Issue 8849010:
Add 'web_accessible_resource" keyword for version 2 extension manifests. This makes extension res... (Closed)
Base URL: svn://chrome-svn/chrome/trunk/src/