Replicate WebInsecureRequestPolicy instead of a bool for strict mixed content checks.

content/common/frame_replication_state.h

 // Copyright 2014 The Chromium Authors. All rights reserved.
 // Use of this source code is governed by a BSD-style license that can be
 // found in the LICENSE file.
 
 #ifndef CONTENT_COMMON_FRAME_REPLICATION_STATE_H_
 #define CONTENT_COMMON_FRAME_REPLICATION_STATE_H_
 
 #include <string>
 #include <vector>
 
 #include "content/common/content_export.h"
 #include "content/common/content_security_policy_header.h"
+#include "third_party/WebKit/public/platform/WebInsecureRequestPolicy.h"
 #include "url/origin.h"
 
 namespace blink {
 enum class WebTreeScopeType;
 enum class WebSandboxFlags;
 }
 
 namespace content {
 
 // This structure holds information that needs to be replicated between a
 // RenderFrame and any of its associated RenderFrameProxies.
 struct CONTENT_EXPORT FrameReplicationState {
   FrameReplicationState();
   FrameReplicationState(blink::WebTreeScopeType scope,
                         const std::string& name,
                         const std::string& unique_name,
                         blink::WebSandboxFlags sandbox_flags,
-                        bool should_enforce_strict_mixed_content_checking,
+                        blink::WebInsecureRequestPolicy insecure_request_policy,
                         bool has_potentially_trustworthy_unique_origin);
   FrameReplicationState(const FrameReplicationState& other);
   ~FrameReplicationState();
 
   // Current origin of the frame. This field is updated whenever a frame
   // navigation commits.
   //
   // TODO(alexmos): For now, |origin| updates are immediately sent to all frame
   // proxies when in --site-per-process mode. This isn't ideal, since Blink
   // typically needs a proxy's origin only when performing security checks on
@@ skipping 47 matching lines @@
   std::vector<ContentSecurityPolicyHeader> accumulated_csp_headers;
 
   // Whether the frame is in a document tree or a shadow tree, per the Shadow
   // DOM spec: https://w3c.github.io/webcomponents/spec/shadow/
   // Note: This should really be const, as it can never change once a frame is
   // created. However, making it const makes it a pain to embed into IPC message
   // params: having a const member implicitly deletes the copy assignment
   // operator.
   blink::WebTreeScopeType scope;
 
-  // True if a frame's current document should strictly block all mixed
-  // content. Updates are immediately sent to all frame proxies when
-  // frames live in different processes.
-  bool should_enforce_strict_mixed_content_checking;
+  // The insecure request policy that a frame's current is enforcing.

[alexmos, 2016/06/07 19:00:06]

Missing a word?  A frame's current >document< is enforcing.

[Mike West, 2016/06/08 07:21:12]

Done.

+  // Updates are immediately sent to all frame proxies when frames live in
+  // different processes.
+  blink::WebInsecureRequestPolicy insecure_request_policy;
 
   // True if a frame's origin is unique and should be considered potentially
   // trustworthy.
   bool has_potentially_trustworthy_unique_origin;
 
   // TODO(alexmos): Eventually, this structure can also hold other state that
   // needs to be replicated, such as frame sizing info.
 };
 
 }  // namespace content
 
 #endif  // CONTENT_COMMON_FRAME_REPLICATION_STATE_H_