| Index: Source/core/dom/Document.cpp
|
| diff --git a/Source/core/dom/Document.cpp b/Source/core/dom/Document.cpp
|
| index fef902a5f5c3d5c032a78b4292bf89db04a492d9..93ad71a9ecf2d93b25e0ce23347ba706648866b5 100644
|
| --- a/Source/core/dom/Document.cpp
|
| +++ b/Source/core/dom/Document.cpp
|
| @@ -3979,6 +3979,26 @@ String Document::lastModified() const
|
|
|
| const KURL& Document::firstPartyForCookies() const
|
| {
|
| + if (!RuntimeEnabledFeatures::firstPartyIncludesAncestorsEnabled())
|
| + return topDocument().url();
|
| +
|
| + // We're intentionally using the URL of each document rather than the document's SecurityOrigin.
|
| + // Sandboxing a document into a unique origin shouldn't effect first-/third-party status for
|
| + // cookies and site data.
|
| + RefPtr<SecurityOrigin> topOrigin = SecurityOrigin::create(topDocument().url());
|
| + const Document* currentDocument = this;
|
| + while (currentDocument) {
|
| + // Skip over srcdoc documents, as they are always same-origin with their closest non-srcdoc parent.
|
| + while (currentDocument->isSrcdocDocument())
|
| + currentDocument = currentDocument->parentDocument();
|
| + ASSERT(currentDocument);
|
| +
|
| + if (!topOrigin->canRequest(currentDocument->url()))
|
| + return SecurityOrigin::urlWithUniqueSecurityOrigin();
|
| +
|
| + currentDocument = currentDocument->parentDocument();
|
| + }
|
| +
|
| return topDocument().url();
|
| }
|
|
|
|
|
Chromium Code Reviews
Issue 1075163002:
Ancestors count towards first-partyness. (Closed)
Base URL: svn://svn.chromium.org/blink/trunk