OLD | NEW |
1 // Copyright 2015 The Chromium Authors. All rights reserved. | 1 // Copyright 2015 The Chromium Authors. All rights reserved. |
2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
4 | 4 |
5 #ifndef CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ | 5 #ifndef CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ |
6 #define CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ | 6 #define CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ |
7 | 7 |
8 #include <string> | |
9 | |
10 #include "content/common/content_export.h" | 8 #include "content/common/content_export.h" |
11 | 9 |
12 class GURL; | 10 class GURL; |
13 | 11 |
14 namespace content { | 12 namespace content { |
15 | 13 |
16 // Returns true if the origin is trustworthy: that is, if its contents can be | 14 // Returns true if the origin is trustworthy: that is, if its contents can be |
17 // said to have been transferred to the browser in a way that a network attacker | 15 // said to have been transferred to the browser in a way that a network attacker |
18 // cannot tamper with or observe. | 16 // cannot tamper with or observe. |
19 // | 17 // |
20 // See https://www.w3.org/TR/powerful-features/#is-origin-trustworthy. | 18 // See https://www.w3.org/TR/powerful-features/#is-origin-trustworthy. |
21 bool CONTENT_EXPORT IsOriginSecure(const GURL& url); | 19 bool CONTENT_EXPORT IsOriginSecure(const GURL& url); |
22 | 20 |
23 // Returns true if the origin can register a service worker. Scheme must be | 21 // Returns true if the origin can register a service worker. Scheme must be |
24 // http (localhost only), https, or a custom-set secure scheme. | 22 // http (localhost only), https, or a custom-set secure scheme. |
25 bool CONTENT_EXPORT OriginCanAccessServiceWorkers(const GURL& url); | 23 bool CONTENT_EXPORT OriginCanAccessServiceWorkers(const GURL& url); |
26 | 24 |
27 // Resets the internal schemes/origins whitelist. Used only for testing. | 25 // Resets the internal schemes/origins whitelist. Used only for testing. |
28 void CONTENT_EXPORT ResetSchemesAndOriginsWhitelistForTesting(); | 26 void CONTENT_EXPORT ResetSchemesAndOriginsWhitelistForTesting(); |
29 | 27 |
30 // Utility functions for extracting Suborigin information from a URL that a | |
31 // Suborigin has been serialized into. See | |
32 // https://w3c.github.io/webappsec-suborigins/ for more information on | |
33 // Suborigins. | |
34 // | |
35 // Returns true if the url has a serialized Suborigin in the host. Otherwise, | |
36 // returns false. | |
37 bool CONTENT_EXPORT HasSuborigin(const GURL& url); | |
38 | |
39 // If the host in the URL has a Suborigin serialized into it, returns the name. | |
40 // Otherwise, returns the empty string. | |
41 std::string CONTENT_EXPORT SuboriginFromUrl(const GURL& url); | |
42 | |
43 // If the URL has a suborigin serialized into it, returns the same URL with the | |
44 // suborigin stripped. Otherwise, returns the original URL unchanged. | |
45 // | |
46 // For example, if given the URL https-so://foobar.example.com, the returned URL | |
47 // would be https://example.com. If given the URL https://foobar.com (no | |
48 // suborigin), the returned URL would be https://foobar.com. | |
49 GURL CONTENT_EXPORT StripSuboriginFromUrl(const GURL& url); | |
50 | |
51 } // namespace content | 28 } // namespace content |
52 | 29 |
53 #endif // CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ | 30 #endif // CONTENT_PUBLIC_COMMON_ORIGIN_UTIL_H_ |
OLD | NEW |