content/common/service_worker/service_worker_utils.cc - Issue 2196633002: [ServiceWorker] Don't check the origin equality when disable-web-security flag is set.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: content/common/service_worker/service_worker_utils.cc

Issue 2196633002: [ServiceWorker] Don't check the origin equality when disable-web-security flag is set. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master

Patch Set: incorporated nhiroki and shimazu's comment Created 4 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « content/common/service_worker/service_worker_utils.h ('k') | content/test/data/service_worker/disable_web_security_get_registration.html » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/common/service_worker/service_worker_utils.cc

diff --git a/content/common/service_worker/service_worker_utils.cc b/content/common/service_worker/service_worker_utils.cc

index 3a4971fc4ec7cd75a1cd022eba2e40853a891811..fbc1de1e0eefa1dc51d43a1ff62fc744da2b3a8d 100644

--- a/content/common/service_worker/service_worker_utils.cc

+++ b/content/common/service_worker/service_worker_utils.cc

@@ -6,8 +6,10 @@

#include <string>

+#include "base/command_line.h"

#include "base/logging.h"

#include "base/strings/string_util.h"

+#include "content/public/common/content_switches.h"

nhiroki 2016/08/01 08:21:25 These inclusions are not necessary.

horo 2016/08/01 10:48:47 Done.

#include "content/public/common/origin_util.h"

namespace content {

@@ -31,11 +33,6 @@ bool PathContainsDisallowedCharacter(const GURL& url) {

return false;

}

-bool AllOriginsMatch(const GURL& url_a, const GURL& url_b, const GURL& url_c) {

- return url_a.GetOrigin() == url_b.GetOrigin() &&

- url_a.GetOrigin() == url_c.GetOrigin();

} // namespace

// static

@@ -116,7 +113,8 @@ bool ServiceWorkerUtils::CanRegisterServiceWorker(const GURL& context_url,

DCHECK(context_url.is_valid());

DCHECK(pattern.is_valid());

DCHECK(script_url.is_valid());

- return AllOriginsMatch(context_url, pattern, script_url) &&

+ return ServiceWorkerUtils::PassOriginEqualitySecurityCheck<GURL>(

+ context_url, pattern, script_url) &&

OriginCanAccessServiceWorkers(context_url) &&

OriginCanAccessServiceWorkers(pattern) &&

OriginCanAccessServiceWorkers(script_url);