content/browser/child_process_security_policy_impl.h - Issue 1270663002: Validate the Origin HTTP header in the browser process. - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(1077)

My Issues | Starred Open | Closed | All

Unified Diff: content/browser/child_process_security_policy_impl.h

Issue 1270663002: Validate the Origin HTTP header in the browser process. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Update comment Created 5 years, 4 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« chrome/browser/extensions/chrome_content_browser_client_extensions_part.cc ('K') | « content/browser/bad_message.h ('k') | content/browser/child_process_security_policy_impl.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/browser/child_process_security_policy_impl.h

diff --git a/content/browser/child_process_security_policy_impl.h b/content/browser/child_process_security_policy_impl.h

index 522a377c07e37ea5d0f500d600901060450e44af..59d0274554ea5cfc5f40c308bf5bd4dfceecd918 100644

--- a/content/browser/child_process_security_policy_impl.h

+++ b/content/browser/child_process_security_policy_impl.h

@@ -126,6 +126,12 @@ class CONTENT_EXPORT ChildProcessSecurityPolicyImpl

// request the URL.

bool CanRequestURL(int child_id, const GURL& url);

+ // Whether the process is allowed to commit a document from the given URL.

+ // This is more restrictive than CanRequestURL, since CanRequestURL allows

+ // requests that might lead to cross-process navigations or external protocol

+ // handlers.

+ bool CanCommitURL(int child_id, const GURL& url);

+

// Explicit permissions checks for FileSystemURL specified files.

bool CanReadFileSystemFile(int child_id, const storage::FileSystemURL& url);

bool CanWriteFileSystemFile(int child_id, const storage::FileSystemURL& url);

« chrome/browser/extensions/chrome_content_browser_client_extensions_part.cc ('K') | « content/browser/bad_message.h ('k') | content/browser/child_process_security_policy_impl.cc » ('j') | no next file with comments »

Powered by Google App Engine

This is Rietveld 408576698