Replicate Content-Security-Policy into remote frame proxies.

third_party/WebKit/public/web/WebFrameClient.h

Index: third_party/WebKit/public/web/WebFrameClient.h
diff --git a/third_party/WebKit/public/web/WebFrameClient.h b/third_party/WebKit/public/web/WebFrameClient.h
index 58a80ba926f22dee7aa9b11a8c5e4957d4fa2b8c..3128bf71fac29c0156b53e685b9cb054724e5ff6 100644
--- a/third_party/WebKit/public/web/WebFrameClient.h
+++ b/third_party/WebKit/public/web/WebFrameClient.h
@@ -56,6 +56,7 @@
 #include "public/platform/WebStorageQuotaType.h"
 #include "public/platform/WebURLError.h"
 #include "public/platform/WebURLRequest.h"
+#include "public/web/WebContentSecurityPolicy.h"
 #include <v8.h>
 
 namespace blink {
@@ -720,6 +721,12 @@ public:
     // Mojo ----------------------------------------------------------------
     virtual ServiceRegistry* serviceRegistry() { return nullptr; }
 
+    // Called when a new Content Security Policy is added to the frame's
+    // document.  This can be trigerred by handling of HTTP headers, handling

[Mike West, 2016/05/11 06:21:04]

Nit: s/trigerred/triggered/

[Łukasz Anforowicz, 2016/05/11 23:14:48]

Done.

+    // of <meta> element, or by inheriting CSP from the parent (in case of
+    // about:blank).
+    virtual void didAddContentSecurityPolicy(const WebString& headerValue, WebContentSecurityPolicyType, WebContentSecurityPolicySource) { }
+
 protected:
     virtual ~WebFrameClient() { }
 };