net/cookies/cookie_options.h - Issue 1411813003: Teach URLRequest about initiator checks for First-Party-Only cookies.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: net/cookies/cookie_options.h

Issue 1411813003: Teach URLRequest about initiator checks for First-Party-Only cookies. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: Rebase. Created 4 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: net/cookies/cookie_options.h

diff --git a/net/cookies/cookie_options.h b/net/cookies/cookie_options.h

index 7189b2300123ea1fb472662e6400e78d39e72979..b0eed684396bdda22c0f3d39439007752e3a150c 100644

--- a/net/cookies/cookie_options.h

+++ b/net/cookies/cookie_options.h

@@ -16,25 +16,30 @@ namespace net {

class NET_EXPORT CookieOptions {

public:

- // Default is to exclude httponly completely, and exclude first-party from

- // being read, which means:

- // - reading operations will not return httponly or first-party cookies.

- // - writing operations will not write httponly cookies (first-party will be

- // written).

+ // Creates a CookieOptions object which:

- // If a first-party URL is set, then first-party cookies which match that URL

- // will be returned.

+ // * Excludes HttpOnly cookies

+ // * Excludes First-Party-Only cookies

+ // * Does not enforce prefix restrictions (e.g. "$Secure-*")

+ //

+ // These settings can be altered by calling:

+ //

+ // * |set_{include,exclude}_httponly()|

+ // * |set_include_first_party_only_cookies()|

+ // * |set_enforce_prefixes()|

CookieOptions();

void set_exclude_httponly() { exclude_httponly_ = true; }

void set_include_httponly() { exclude_httponly_ = false; }

bool exclude_httponly() const { return exclude_httponly_; }

- void set_include_first_party_only() { include_first_party_only_ = true; }

- bool include_first_party_only() const { return include_first_party_only_; }

- void set_first_party(const url::Origin& origin) { first_party_ = origin; }

- const url::Origin& first_party() const { return first_party_; }

+ // Default is to exclude 'first-party-only' cookies.

+ void set_include_first_party_only_cookies() {

+ include_first_party_only_cookies_ = true;

+ }

+ bool include_first_party_only_cookies() const {

+ return include_first_party_only_cookies_;

+ }

// TODO(jww): Remove once we decide whether to ship modifying 'secure' cookies

// only from secure schemes. https://crbug.com/546820

@@ -52,9 +57,9 @@ class NET_EXPORT CookieOptions {

private:

bool exclude_httponly_;

- bool include_first_party_only_;

- url::Origin first_party_;

+ bool include_first_party_only_cookies_;

bool enforce_strict_secure_;

+ url::Origin first_party_;

mmenke 2016/01/12 16:20:58 No longer used.

Mike West 2016/01/13 08:10:22 Thanks!

base::Time server_time_;

};

« no previous file with comments | « net/cookies/cookie_monster.cc ('k') | net/cookies/cookie_options.cc » ('j') | net/url_request/url_request.h » ('J')