| Index: Source/core/page/ContentSecurityPolicy.h
|
| diff --git a/Source/core/page/ContentSecurityPolicy.h b/Source/core/page/ContentSecurityPolicy.h
|
| index aa76d5e729e7dc46b12b0b8f3fa57820f069c945..08e228ab33fa7b60e716bf9f904177cf33df3406 100644
|
| --- a/Source/core/page/ContentSecurityPolicy.h
|
| +++ b/Source/core/page/ContentSecurityPolicy.h
|
| @@ -89,13 +89,12 @@ public:
|
|
|
| bool allowJavaScriptURLs(const String& contextURL, const WTF::OrdinalNumber& contextLine, ReportingStatus = SendReport) const;
|
| bool allowInlineEventHandlers(const String& contextURL, const WTF::OrdinalNumber& contextLine, ReportingStatus = SendReport) const;
|
| - bool allowInlineScript(const String& contextURL, const WTF::OrdinalNumber& contextLine, ReportingStatus = SendReport) const;
|
| + bool allowInlineScript(const String& nonce, const String& contextURL, const WTF::OrdinalNumber& contextLine, ReportingStatus = SendReport) const;
|
| bool allowInlineStyle(const String& contextURL, const WTF::OrdinalNumber& contextLine, ReportingStatus = SendReport) const;
|
| bool allowEval(ScriptState* = 0, ReportingStatus = SendReport) const;
|
| - bool allowScriptNonce(const String& nonce, const String& contextURL, const WTF::OrdinalNumber& contextLine, const KURL& = KURL()) const;
|
| bool allowPluginType(const String& type, const String& typeAttribute, const KURL&, ReportingStatus = SendReport) const;
|
|
|
| - bool allowScriptFromSource(const KURL&, ReportingStatus = SendReport) const;
|
| + bool allowScriptFromSource(const KURL&, const String& nonce, ReportingStatus = SendReport) const;
|
| bool allowObjectFromSource(const KURL&, ReportingStatus = SendReport) const;
|
| bool allowChildFrameFromSource(const KURL&, ReportingStatus = SendReport) const;
|
| bool allowImageFromSource(const KURL&, ReportingStatus = SendReport) const;
|
|
|
Chromium Code Reviews
Issue 14949017:
Implementation of W3C compliant CSP script-src nonce. (Closed)
Base URL: https://chromium.googlesource.com/chromium/blink.git@master