WIP: Move 'Upgrade-Insecure-Requests' to the browser process.

content/common/resource_request.h

Index: content/common/resource_request.h
diff --git a/content/common/resource_request.h b/content/common/resource_request.h
index 278566ce853daafd36349c1fbf9f03cafc65c514..ac5802d3e688a4b1ceced9f2eed67f045436ccaf 100644
--- a/content/common/resource_request.h
+++ b/content/common/resource_request.h
@@ -20,6 +20,7 @@
 #include "content/public/common/request_context_type.h"
 #include "content/public/common/resource_type.h"
 #include "net/base/request_priority.h"
+#include "third_party/WebKit/public/platform/WebInsecureRequestPolicy.h"
 #include "third_party/WebKit/public/platform/WebMixedContentContextType.h"
 #include "third_party/WebKit/public/platform/WebPageVisibilityState.h"
 #include "third_party/WebKit/public/platform/WebReferrerPolicy.h"
@@ -195,6 +196,11 @@ struct CONTENT_EXPORT ResourceRequest {
   // The response should be downloaded and stored in the network cache, but not
   // sent back to the renderer.
   bool download_to_network_cache_only = false;
+
+  // The insecure request policy of the context which triggered this request:
+  // https://w3c.github.io/webappsec-upgrade-insecure-requests/#insecure-requests-policy
+  blink::WebInsecureRequestPolicy insecure_request_policy =
+      blink::kLeaveInsecureRequestsAlone;
 };
 
 }  // namespace content