third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h - Issue 1723753002: Make Document::isSecureContext() work for OOPIFs

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h

Issue 1723753002: Make Document::isSecureContext() work for OOPIFs (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: rebase Created 4 years, 10 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

Index: third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h

diff --git a/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h b/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h

index 4cdc68aa2807f85c0f11966e73c31e3947fa1ba1..7b5c70ee88f12684a4114d0e6c07f7f311ef36ba 100644

--- a/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h

+++ b/third_party/WebKit/Source/platform/weborigin/SecurityOrigin.h

@@ -44,6 +44,7 @@ class PLATFORM_EXPORT SecurityOrigin : public RefCounted<SecurityOrigin> {

WTF_MAKE_NONCOPYABLE(SecurityOrigin);

public:

static PassRefPtr<SecurityOrigin> create(const KURL&);

+ static PassRefPtr<SecurityOrigin> createUnique(bool isPotentiallyTrustworthy, bool shouldBypassSecureContextCheck);

static PassRefPtr<SecurityOrigin> createUnique();

static PassRefPtr<SecurityOrigin> createFromString(const String&);

@@ -144,6 +145,11 @@ public:

// Returns a human-readable error message describing that a non-secure origin's access to a feature is denied.

static String isPotentiallyTrustworthyErrorMessage();

+ void setIsPotentiallyTrustworthySandboxedOrigin();

+ // Returns true if the origin should bypass the secure context check.

+ bool bypassSecureContextCheck() const;

Mike West 2016/02/25 11:58:11 Would you mind adding unit tests for these new met

estark 2016/03/01 02:59:26 Done.

// Returns true if this SecurityOrigin can load local resources, such

// as images, iframes, and style sheets, and can link to local URLs.

// For example, call this function before creating an iframe to a

@@ -277,6 +283,12 @@ private:

bool m_domainWasSetInDOM;

bool m_canLoadLocalResources;

bool m_blockLocalAccessFromLocalOrigin;

+ // True if the origin is unique and should be considered potentially trustworthy.

+ bool m_isUniqueOriginPotentiallyTrustworthy;

+ // True if the origin is unique and should bypass the secure context check.

+ bool m_uniqueOriginShouldBypassSecureContextCheck;

};

} // namespace blink