third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp - Issue 1866433002: Use RequestContext to apply CSP in FrameFetchContext

Unified Diff: third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp

Issue 1866433002: Use RequestContext to apply CSP in FrameFetchContext (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: rename redirectReceivedAndNotFollowed() to redirectBlocked() Created 4 years, 8 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h ('k') | third_party/WebKit/Source/core/loader/DocumentThreadableLoader.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp

diff --git a/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp b/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp

index d4f207be1c0ad75875ed4cc1f8081152a12f4e7e..f97ade3617b7863d411304956bf1a784fdd09c70 100644

--- a/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp

+++ b/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.cpp

@@ -1055,31 +1055,6 @@ bool ContentSecurityPolicy::shouldBypassMainWorld(const ExecutionContext* contex

return false;

}

-bool ContentSecurityPolicy::isScriptResource(const ResourceRequest& resourceRequest)

- return WebURLRequest::RequestContextScript == resourceRequest.requestContext() || WebURLRequest::RequestContextImport == resourceRequest.requestContext() || WebURLRequest::RequestContextXSLT == resourceRequest.requestContext() || WebURLRequest::RequestContextPrefetch == resourceRequest.requestContext();

-bool ContentSecurityPolicy::isStyleResource(const ResourceRequest& resourceRequest)

- return WebURLRequest::RequestContextStyle == resourceRequest.requestContext() || WebURLRequest::RequestContextPrefetch == resourceRequest.requestContext();

-bool ContentSecurityPolicy::isImageResource(const ResourceRequest& resourceRequest)

- return WebURLRequest::RequestContextImage == resourceRequest.requestContext() || WebURLRequest::RequestContextFavicon == resourceRequest.requestContext() || WebURLRequest::RequestContextImageSet == resourceRequest.requestContext() || WebURLRequest::RequestContextPrefetch == resourceRequest.requestContext();

-bool ContentSecurityPolicy::isFontResource(const ResourceRequest& resourceRequest)

- return WebURLRequest::RequestContextFont == resourceRequest.requestContext() || WebURLRequest::RequestContextPrefetch == resourceRequest.requestContext();

-bool ContentSecurityPolicy::isMediaResource(const ResourceRequest& resourceRequest)

- return WebURLRequest::RequestContextAudio == resourceRequest.requestContext() || WebURLRequest::RequestContextVideo == resourceRequest.requestContext() || WebURLRequest::RequestContextTrack == resourceRequest.requestContext() || WebURLRequest::RequestContextPrefetch == resourceRequest.requestContext();

bool ContentSecurityPolicy::shouldSendViolationReport(const String& report) const

{

// Collisions have no security impact, so we can save space by storing only the string's hash rather than the whole report.