Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1482)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h

Issue 1507023004: Harden the implementation of '--disable-web-security' (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: exclude //content/shell Created 5 years ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« content/renderer/renderer_blink_platform_impl.cc ('K') | « third_party/WebKit/Source/core/dom/Document.cpp ('k') | third_party/WebKit/Source/platform/weborigin/SecurityOrigin.cpp » ('j') | third_party/WebKit/Source/platform/weborigin/SecurityOrigin.cpp » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h
diff --git a/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h b/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h
index e2468fd104ea4477421120f43b4773ab648bde03..a1f867a907686e9d0644cd466110b0542755ab31 100644
--- a/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h
+++ b/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h
@@ -150,8 +150,17 @@ public:
// Explicitly grant the ability to access every other SecurityOrigin.
//
// WARNING: This is an extremely powerful ability. Use with caution!
+ //
+ // TODO(mkwst): Remove this API as soon as is fesiable. That will likely
+ // require creating a more limited replacement.
void grantUniversalAccess();
+ // Grant `file:` origins universal access.
+ //
+ // TODO(mkwst): As soon as we can reasonably get WebView to stop offering
+ // the API which requires this method, we should remove it.
Torne 2015/12/09 12:55:56 You can have this comment if you want, but realist
Mike West 2015/12/09 14:17:49 *sigh*
+ void grantUniversalAccessForFileOrigins();
+
bool canAccessDatabase() const { return !isUnique(); }
bool canAccessLocalStorage() const { return !isUnique(); }
bool canAccessSharedWorkers() const { return !isUnique(); }
@@ -228,6 +237,7 @@ public:
// - Use path-based file:// origins.
struct PrivilegeData {
bool m_universalAccess;
+ bool m_universalAccessForFileOrigins;
bool m_canLoadLocalResources;
bool m_blockLocalAccessFromLocalOrigin;
};
@@ -258,6 +268,7 @@ private:
unsigned short m_effectivePort;
bool m_isUnique;
bool m_universalAccess;
+ bool m_universalAccessForFileOrigins;
bool m_domainWasSetInDOM;
bool m_canLoadLocalResources;
bool m_blockLocalAccessFromLocalOrigin;
« content/renderer/renderer_blink_platform_impl.cc ('K') | « third_party/WebKit/Source/core/dom/Document.cpp ('k') | third_party/WebKit/Source/platform/weborigin/SecurityOrigin.cpp » ('j') | third_party/WebKit/Source/platform/weborigin/SecurityOrigin.cpp » ('J')

Powered by Google App Engine
This is Rietveld 408576698