PlzNavigate: Move navigation-level mixed content checks to the browser.

content/browser/frame_host/navigation_request.cc

 // Copyright 2014 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #include "content/browser/frame_host/navigation_request.h"
 
 #include <utility>
 
 #include "base/memory/ptr_util.h"
 #include "content/browser/appcache/appcache_navigation_handle.h"
@@ skipping 17 matching lines @@
 #include "content/public/browser/browser_context.h"
 #include "content/public/browser/content_browser_client.h"
 #include "content/public/browser/global_request_id.h"
 #include "content/public/browser/navigation_controller.h"
 #include "content/public/browser/navigation_data.h"
 #include "content/public/browser/navigation_ui_data.h"
 #include "content/public/browser/storage_partition.h"
 #include "content/public/browser/stream_handle.h"
 #include "content/public/common/appcache_info.h"
 #include "content/public/common/content_client.h"
+#include "content/public/common/origin_util.h"
 #include "content/public/common/request_context_type.h"
 #include "content/public/common/resource_response.h"
 #include "content/public/common/url_constants.h"
 #include "net/base/load_flags.h"
 #include "net/base/net_errors.h"
 #include "net/base/url_util.h"
 #include "net/http/http_request_headers.h"
 #include "net/url_request/redirect_info.h"
 #include "third_party/WebKit/public/platform/WebMixedContentContextType.h"
 #include "third_party/WebKit/public/web/WebSandboxFlags.h"
@@ skipping 27 matching lines @@
     case FrameMsg_Navigate_Type::SAME_DOCUMENT:
     case FrameMsg_Navigate_Type::DIFFERENT_DOCUMENT:
     case FrameMsg_Navigate_Type::HISTORY_SAME_DOCUMENT:
     case FrameMsg_Navigate_Type::HISTORY_DIFFERENT_DOCUMENT:
       if (is_post)
         *load_flags |= net::LOAD_VALIDATE_CACHE;
       break;
   }
 }
 
-// This is based on SecurityOrigin::isPotentiallyTrustworthy.
-// TODO(clamy): This should be function in url::Origin.
-bool IsPotentiallyTrustworthyOrigin(const url::Origin& origin) {
-  if (origin.unique())
-    return false;
-
-  if (origin.scheme() == url::kHttpsScheme ||
-      origin.scheme() == url::kAboutScheme ||
-      origin.scheme() == url::kDataScheme ||
-      origin.scheme() == url::kWssScheme ||
-      origin.scheme() == url::kFileScheme) {
-    return true;
-  }
-
-  if (net::IsLocalhost(origin.host()))
-    return true;
-
-  // TODO(clamy): Check for whitelisted origins.
-  return false;
-}
-
 // TODO(clamy): This should be function in FrameTreeNode.
 bool IsSecureFrame(FrameTreeNode* frame) {
   while (frame) {
     if (!IsPotentiallyTrustworthyOrigin(frame->current_origin()))
       return false;
     frame = frame->parent();
   }
   return true;
 }
 
@@ skipping 631 matching lines @@
   DCHECK_EQ(request_params_.has_user_gesture, begin_params_.has_user_gesture);
 
   render_frame_host->CommitNavigation(response_.get(), std::move(body_),
                                       common_params_, request_params_,
                                       is_view_source_);
 
   frame_tree_node_->ResetNavigationRequest(true);
 }
 
 }  // namespace content