Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(43)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: third_party/WebKit/Source/core/loader/HttpEquiv.cpp

Issue 2401573003: CSP: Fix 'strict-dynamic' with multiple policies. (Closed)
Patch Set: Tests compile. Created 4 years, 2 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « third_party/WebKit/Source/core/loader/FrameFetchContext.cpp ('k') | third_party/WebKit/Source/core/workers/WorkerGlobalScope.cpp » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 // Copyright 2015 The Chromium Authors. All rights reserved. 1 // Copyright 2015 The Chromium Authors. All rights reserved.
2 // Use of this source code is governed by a BSD-style license that can be 2 // Use of this source code is governed by a BSD-style license that can be
3 // found in the LICENSE file. 3 // found in the LICENSE file.
4 4
5 #include "core/loader/HttpEquiv.h" 5 #include "core/loader/HttpEquiv.h"
6 6
7 #include "core/dom/Document.h" 7 #include "core/dom/Document.h"
8 #include "core/dom/ScriptableDocumentParser.h" 8 #include "core/dom/ScriptableDocumentParser.h"
9 #include "core/dom/StyleEngine.h" 9 #include "core/dom/StyleEngine.h"
10 #include "core/fetch/ClientHintsPreferences.h" 10 #include "core/fetch/ClientHintsPreferences.h"
(...skipping 80 matching lines...) Expand 10 before | Expand all | Expand 10 after
91 91
92 void HttpEquiv::processHttpEquivDefaultStyle(Document& document, 92 void HttpEquiv::processHttpEquivDefaultStyle(Document& document,
93 const AtomicString& content) { 93 const AtomicString& content) {
94 document.styleEngine().setHttpDefaultStyle(content); 94 document.styleEngine().setHttpDefaultStyle(content);
95 } 95 }
96 96
97 void HttpEquiv::processHttpEquivRefresh(Document& document, 97 void HttpEquiv::processHttpEquivRefresh(Document& document,
98 const AtomicString& content) { 98 const AtomicString& content) {
99 UseCounter::count(document, UseCounter::MetaRefresh); 99 UseCounter::count(document, UseCounter::MetaRefresh);
100 if (!document.contentSecurityPolicy()->allowInlineScript( 100 if (!document.contentSecurityPolicy()->allowInlineScript(
101 KURL(), "", OrdinalNumber(), "", 101 KURL(), "", ParserInserted, OrdinalNumber(), "",
102 ContentSecurityPolicy::SuppressReport)) 102 ContentSecurityPolicy::SuppressReport))
103 UseCounter::count(document, 103 UseCounter::count(document,
104 UseCounter::MetaRefreshWhenCSPBlocksInlineScript); 104 UseCounter::MetaRefreshWhenCSPBlocksInlineScript);
105 105
106 document.maybeHandleHttpRefresh(content, Document::HttpRefreshFromMetaTag); 106 document.maybeHandleHttpRefresh(content, Document::HttpRefreshFromMetaTag);
107 } 107 }
108 108
109 void HttpEquiv::processHttpEquivSetCookie(Document& document, 109 void HttpEquiv::processHttpEquivSetCookie(Document& document,
110 const AtomicString& content) { 110 const AtomicString& content) {
111 // FIXME: make setCookie work on XML documents too; e.g. in case of 111 // FIXME: make setCookie work on XML documents too; e.g. in case of
112 // <html:meta.....> 112 // <html:meta.....>
113 if (!document.isHTMLDocument()) 113 if (!document.isHTMLDocument())
114 return; 114 return;
115 115
116 UseCounter::count(document, UseCounter::MetaSetCookie); 116 UseCounter::count(document, UseCounter::MetaSetCookie);
117 if (!document.contentSecurityPolicy()->allowInlineScript( 117 if (!document.contentSecurityPolicy()->allowInlineScript(
118 KURL(), "", OrdinalNumber(), "", 118 KURL(), "", ParserInserted, OrdinalNumber(), "",
119 ContentSecurityPolicy::SuppressReport)) 119 ContentSecurityPolicy::SuppressReport))
120 UseCounter::count(document, 120 UseCounter::count(document,
121 UseCounter::MetaSetCookieWhenCSPBlocksInlineScript); 121 UseCounter::MetaSetCookieWhenCSPBlocksInlineScript);
122 122
123 // Exception (for sandboxed documents) ignored. 123 // Exception (for sandboxed documents) ignored.
124 document.setCookie(content, IGNORE_EXCEPTION); 124 document.setCookie(content, IGNORE_EXCEPTION);
125 } 125 }
126 126
127 } // namespace blink 127 } // namespace blink
OLDNEW
« no previous file with comments | « third_party/WebKit/Source/core/loader/FrameFetchContext.cpp ('k') | third_party/WebKit/Source/core/workers/WorkerGlobalScope.cpp » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698