Index: third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h |
diff --git a/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h b/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h |
index 563fb6476f831848a91e1d0db80a92c3e5b236fd..0ae413184b35c90662aa13376fffe8e3ee2b6444 100644 |
--- a/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h |
+++ b/third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h |
@@ -353,6 +353,12 @@ class CORE_EXPORT ContentSecurityPolicy |
static bool isNonceableElement(const Element*); |
+ // This method checks whether the request should be allowed for an |
+ // experimental EmbeddingCSP feature |
+ // Please, see https://w3c.github.io/webappsec-csp/embedded/#origin-allowed. |
+ static bool shouldEnforceEmbeddersPolicy(const ResourceResponse&, |
+ SecurityOrigin*); |
+ |
Document* document() const; |
private: |