OLD | NEW |
1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ | 5 #ifndef CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ |
6 #define CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ | 6 #define CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ |
7 | 7 |
8 #include "content/common/content_export.h" | 8 #include "content/common/content_export.h" |
| 9 #include "url/origin.h" |
9 | 10 |
10 class GURL; | 11 class GURL; |
11 | 12 |
12 namespace content { | 13 namespace content { |
13 | 14 |
14 // Returns true if the origin is trustworthy: that is, if its contents can be | 15 // Returns true if the origin is trustworthy: that is, if its contents can be |
15 // said to have been transferred to the browser in a way that a network attacker | 16 // said to have been transferred to the browser in a way that a network attacker |
16 // cannot tamper with or observe. | 17 // cannot tamper with or observe. |
17 // | 18 // |
18 // See https://www.w3.org/TR/powerful-features/#is-origin-trustworthy. | 19 // See https://www.w3.org/TR/powerful-features/#is-origin-trustworthy. |
19 bool CONTENT_EXPORT IsOriginSecure(const GURL& url); | 20 bool CONTENT_EXPORT IsOriginSecure(const GURL& url); |
20 | 21 |
21 // Returns true if the origin can register a service worker. Scheme must be | 22 // Returns true if the origin can register a service worker. Scheme must be |
22 // http (localhost only), https, or a custom-set secure scheme. | 23 // http (localhost only), https, or a custom-set secure scheme. |
23 bool CONTENT_EXPORT OriginCanAccessServiceWorkers(const GURL& url); | 24 bool CONTENT_EXPORT OriginCanAccessServiceWorkers(const GURL& url); |
24 | 25 |
| 26 // Returns true if the origin is unique or was considered secure by the client. |
| 27 // This behaves as close as possible to |
| 28 // SecurityPolicy::isOriginWhiteListedTrustworthy. |
| 29 bool CONTENT_EXPORT IsOriginWhiteListedTrustworthy(const url::Origin& origin); |
| 30 |
| 31 // This is based on SecurityOrigin::isPotentiallyTrustworthy and tries to mimic |
| 32 // its behavior. |
| 33 bool CONTENT_EXPORT IsPotentiallyTrustworthyOrigin(const url::Origin& origin); |
| 34 |
25 } // namespace content | 35 } // namespace content |
26 | 36 |
27 #endif // CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ | 37 #endif // CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ |
OLD | NEW |