Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(193)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 1332563006: Allow 'chrome-extension:' URLs to bypass content settings (2/2) (Closed)

Created:
5 years, 3 months ago by Mike West
Modified:
5 years, 3 months ago
CC:
chromium-apps-reviews_chromium.org, chromium-reviews, extensions-reviews_chromium.org
Base URL:
https://chromium.googlesource.com/chromium/src.git@master
Target Ref:
refs/pending/heads/master
Project:
chromium
Visibility:
Public.

Description

Allow 'chrome-extension:' URLs to bypass content settings (1/2) We changed the behavior of 'Document::firstPartyForCookies' to return an empty URL in the case where any URL in the ancestor chain doesn't match the current document's URL. Previously, we'd simply return the top-level document's URL. This means that the content-settings bypass check in 'ContentSettingsObserver::IsWhitelistedForContentSettings' sees an empty URL as opposed to a 'chrome-extension://' URL for cases in which an extension loads a resource, so content settings are applied as per usual. This breaks things fairly badly for folks who have turned on third-party cookie blocking. In these patches, we introduce a new scheme registry for those schemes which ought to override Blink's concept of "first-party" when they're loaded into the top-level browsing context. Patch 1 (Blink): https://codereview.chromium.org/1305253012 Patch 2 (Chromium): [This patch] BUG=527963 R=jochen@chromium.org Committed: https://crrev.com/cfed7a300606c5eedb858433b37db5ffadf3b2cc Cr-Commit-Position: refs/heads/master@{#348194}

Patch Set 1 #

Total comments: 1

Patch Set 2 : Rebase #

Unified diffs Side-by-side diffs Delta from patch set Stats (+3 lines, -0 lines) Patch
M extensions/renderer/dispatcher.cc View 1 1 chunk +3 lines, -0 lines 0 comments Download

Messages

Total messages: 19 (7 generated)
Mike West
Mind taking a look, Ben, or Jochen?
5 years, 3 months ago (2015-09-09 07:36:36 UTC) #2
jochen (gone - plz use gerrit)
lgtm
5 years, 3 months ago (2015-09-09 07:41:52 UTC) #3
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1332563006/1 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1332563006/1
5 years, 3 months ago (2015-09-09 10:23:28 UTC) #5
commit-bot: I haz the power
Try jobs failed on following builders: chromium_presubmit on tryserver.chromium.linux (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.linux/builders/chromium_presubmit/builds/97682)
5 years, 3 months ago (2015-09-09 10:32:36 UTC) #7
Mike West
Ah, Ben, I do need your stamp. Jochen isn't cool enough, and neither am I. ...
5 years, 3 months ago (2015-09-09 12:38:30 UTC) #8
not at google - send to devlin
lgtm but note merge conflict. https://codereview.chromium.org/1332563006/diff/1/extensions/renderer/dispatcher.cc File extensions/renderer/dispatcher.cc (right): https://codereview.chromium.org/1332563006/diff/1/extensions/renderer/dispatcher.cc#newcode257 extensions/renderer/dispatcher.cc:257: RegisterFunction register_functions[] = { ...
5 years, 3 months ago (2015-09-09 18:06:52 UTC) #9
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1332563006/20001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1332563006/20001
5 years, 3 months ago (2015-09-10 06:45:52 UTC) #12
commit-bot: I haz the power
Try jobs failed on following builders: mac_chromium_rel_ng on tryserver.chromium.mac (JOB_FAILED, http://build.chromium.org/p/tryserver.chromium.mac/builders/mac_chromium_rel_ng/builds/110978)
5 years, 3 months ago (2015-09-10 07:55:40 UTC) #14
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-cq-status.appspot.com/patch-status/1332563006/20001 View timeline at https://chromium-cq-status.appspot.com/patch-timeline/1332563006/20001
5 years, 3 months ago (2015-09-10 17:55:17 UTC) #16
commit-bot: I haz the power
Committed patchset #2 (id:20001)
5 years, 3 months ago (2015-09-10 18:26:42 UTC) #17
commit-bot: I haz the power
Patchset 2 (id:??) landed as https://crrev.com/cfed7a300606c5eedb858433b37db5ffadf3b2cc Cr-Commit-Position: refs/heads/master@{#348194}
5 years, 3 months ago (2015-09-10 18:27:35 UTC) #18
commit-bot: I haz the power
5 years, 3 months ago (2015-09-23 12:12:25 UTC) #19
Message was sent while issue was closed. 
Patchset 2 (id:??) landed as
https://crrev.com/cfed7a300606c5eedb858433b37db5ffadf3b2cc
Cr-Commit-Position: refs/heads/master@{#348194}

Powered by Google App Engine
This is Rietveld 408576698