Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(203)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: ppapi/native_client/src/trusted/plugin/file_downloader.cc

Issue 9159037: Use CORS for fetching NaCl resources from extensions. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src
Patch Set: add webkit bug# Created 8 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « ppapi/native_client/src/trusted/plugin/file_downloader.h ('k') | ppapi/native_client/src/trusted/plugin/json_manifest.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: ppapi/native_client/src/trusted/plugin/file_downloader.cc
diff --git a/ppapi/native_client/src/trusted/plugin/file_downloader.cc b/ppapi/native_client/src/trusted/plugin/file_downloader.cc
index 576f4960c704a693607a241496bcef3aca0f7b2c..8b736970ea16c6c7573ce4610e7f62dc1ce63e06 100644
--- a/ppapi/native_client/src/trusted/plugin/file_downloader.cc
+++ b/ppapi/native_client/src/trusted/plugin/file_downloader.cc
@@ -1,4 +1,4 @@
-// Copyright (c) 2011 The Chromium Authors. All rights reserved.
+// Copyright (c) 2012 The Chromium Authors. All rights reserved.
// Use of this source code is governed by a BSD-style license that can be
// found in the LICENSE file.
@@ -43,11 +43,9 @@ void FileDownloader::Initialize(Plugin* instance) {
bool FileDownloader::Open(
const nacl::string& url,
DownloadFlags flags,
- bool allow_extension_url,
const pp::CompletionCallback& callback,
PP_URLLoaderTrusted_StatusCallback progress_callback) {
- PLUGIN_PRINTF(("FileDownloader::Open (url=%s, allow_extension_url=%d)\n",
- url.c_str(), allow_extension_url));
+ PLUGIN_PRINTF(("FileDownloader::Open (url=%s)\n", url.c_str()));
if (callback.pp_completion_callback().func == NULL ||
instance_ == NULL ||
file_io_trusted_interface_ == NULL)
@@ -70,14 +68,14 @@ bool FileDownloader::Open(
url_scheme_ = instance_->GetUrlScheme(url);
bool grant_universal_access = false;
if (url_scheme_ == SCHEME_CHROME_EXTENSION) {
- if (allow_extension_url) {
- // This NEXE has been granted rights to access URLs in the chrome
- // extension scheme.
- grant_universal_access = true;
- }
+ // Use CORS to access URLs in the chrome extension scheme. If the files
+ // are truly restricted, then they should not be listed as a
+ // web_accessible_resource in the extension manifest.
+ url_request.SetAllowCrossOriginRequests(true);
} else if (url_scheme_ == SCHEME_DATA) {
// TODO(elijahtaylor) Remove this when data URIs can be read without
// universal access.
+ // https://bugs.webkit.org/show_bug.cgi?id=17352
if (streaming_to_buffer()) {
grant_universal_access = true;
} else {
@@ -92,9 +90,8 @@ bool FileDownloader::Open(
if (url_loader_trusted_interface_ != NULL) {
if (grant_universal_access) {
- // TODO(sehr,jvoung): this should use
- // pp::URLRequestInfo::SetAllowCrossOriginRequests() when
- // support for web accessible resources is added to extensions.
+ // TODO(sehr,jvoung): See if we can remove this -- currently
+ // only used for data URIs.
url_loader_trusted_interface_->GrantUniversalAccess(
url_loader_.pp_resource());
}
« no previous file with comments | « ppapi/native_client/src/trusted/plugin/file_downloader.h ('k') | ppapi/native_client/src/trusted/plugin/json_manifest.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698