|
Teach URLRequest about initiator checks for First-Party-Only cookies.
This patch adds an 'initiator' field to 'URLRequest' in order to keep track
of the origin of the context which initiated a request. This allows us to
correctly perform the initiator requests specified in [1], which prevent
first-party-only cookies from being sent along with a request if that request
is "unsafe", and is initiated from a third-party origin (e.g. a form
submission to 'bank.com' from 'evil.com').
[1]: https://tools.ietf.org/html/draft-west-first-party-cookies-04#section-4.3
BUG= 544114
Committed: https://crrev.com/202534e3fa636aa1c9ce73c30dbbba854992488f
Cr-Commit-Position: refs/heads/master@{#369754}
Total comments: 10
Total comments: 14
Total comments: 9
Total comments: 16
Total comments: 1
|
Unified diffs |
Side-by-side diffs |
Delta from patch set |
Stats (+215 lines, -107 lines) |
Patch |
|
M |
chrome/browser/predictors/resource_prefetcher.cc
|
View
|
1
2
3
4
5
6
7
|
2 chunks |
+2 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/appcache/appcache_update_job.cc
|
View
|
1
2
3
4
5
6
7
|
2 chunks |
+2 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/frame_host/frame_tree_node.h
|
View
|
1
2
3
4
5
6
7
|
1 chunk |
+2 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/frame_host/navigation_request.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
2 chunks |
+6 lines, -2 lines |
0 comments
|
Download
|
|
M |
content/browser/frame_host/navigation_request_info.h
|
View
|
1
2
3
4
5
6
7
|
3 chunks |
+5 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/frame_host/navigation_request_info.cc
|
View
|
1
2
3
4
|
2 chunks |
+2 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/loader/async_revalidation_manager.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+1 line, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/loader/navigation_url_loader_unittest.cc
|
View
|
1
2
3
4
5
6
7
|
2 chunks |
+4 lines, -3 lines |
0 comments
|
Download
|
|
M |
content/browser/loader/resource_dispatcher_host_impl.cc
|
View
|
1
2
3
4
5
6
7
|
2 chunks |
+2 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/browser/service_worker/service_worker_write_to_cache_job.cc
|
View
|
1
2
3
4
5
6
7
|
1 chunk |
+1 line, -0 lines |
0 comments
|
Download
|
|
M |
content/child/request_info.h
|
View
|
1
2
3
4
5
6
7
|
2 chunks |
+6 lines, -2 lines |
0 comments
|
Download
|
|
M |
content/child/resource_dispatcher.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+1 line, -0 lines |
0 comments
|
Download
|
|
M |
content/child/web_url_loader_impl.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
2 chunks |
+2 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/common/net/url_fetcher.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+2 lines, -2 lines |
0 comments
|
Download
|
|
M |
content/common/resource_messages.h
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+4 lines, -0 lines |
0 comments
|
Download
|
|
M |
content/renderer/render_frame_impl.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
2 chunks |
+6 lines, -1 line |
0 comments
|
Download
|
|
M |
net/cookies/canonical_cookie.cc
|
View
|
1
2
3
4
5
6
7
|
1 chunk |
+2 lines, -8 lines |
0 comments
|
Download
|
|
M |
net/cookies/canonical_cookie_unittest.cc
|
View
|
1
2
3
4
5
6
7
|
2 chunks |
+18 lines, -24 lines |
0 comments
|
Download
|
|
M |
net/cookies/cookie_monster.cc
|
View
|
1
2
3
4
5
6
7
|
5 chunks |
+5 lines, -5 lines |
0 comments
|
Download
|
|
M |
net/cookies/cookie_options.h
|
View
|
1
2
3
4
5
6
7
8
|
2 chunks |
+18 lines, -15 lines |
0 comments
|
Download
|
|
M |
net/cookies/cookie_options.cc
|
View
|
1
2
3
4
5
6
7
|
1 chunk |
+1 line, -1 line |
0 comments
|
Download
|
|
M |
net/url_request/test_url_fetcher_factory.h
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+1 line, -1 line |
0 comments
|
Download
|
|
M |
net/url_request/test_url_fetcher_factory.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+1 line, -3 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_fetcher.h
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+6 lines, -4 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_fetcher_core.h
|
View
|
1
2
3
4
5
6
7
8
9
|
2 chunks |
+7 lines, -4 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_fetcher_core.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
4 chunks |
+9 lines, -8 lines |
1 comment
|
Download
|
|
M |
net/url_request/url_fetcher_impl.h
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+1 line, -1 line |
0 comments
|
Download
|
|
M |
net/url_request/url_fetcher_impl.cc
|
View
|
1
2
3
4
5
6
7
8
9
|
1 chunk |
+2 lines, -3 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_request.h
|
View
|
1
2
3
4
5
6
7
8
9
|
5 chunks |
+25 lines, -2 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_request.cc
|
View
|
1
2
3
4
5
6
7
8
|
1 chunk |
+5 lines, -0 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_request_http_job.cc
|
View
|
1
2
3
4
5
6
7
8
|
2 chunks |
+24 lines, -7 lines |
0 comments
|
Download
|
|
M |
net/url_request/url_request_unittest.cc
|
View
|
1
2
3
4
5
6
7
8
|
3 chunks |
+42 lines, -11 lines |
0 comments
|
Download
|
Total messages: 46 (13 generated)
|