| OLD | NEW |
|---|
| 1 /* | 1 /* |
| 2 * Copyright (C) 2011 Google, Inc. All rights reserved. | 2 * Copyright (C) 2011 Google, Inc. All rights reserved. |
| 3 * | 3 * |
| 4 * Redistribution and use in source and binary forms, with or without | 4 * Redistribution and use in source and binary forms, with or without |
| 5 * modification, are permitted provided that the following conditions | 5 * modification, are permitted provided that the following conditions |
| 6 * are met: | 6 * are met: |
| 7 * 1. Redistributions of source code must retain the above copyright | 7 * 1. Redistributions of source code must retain the above copyright |
| 8 * notice, this list of conditions and the following disclaimer. | 8 * notice, this list of conditions and the following disclaimer. |
| 9 * 2. Redistributions in binary form must reproduce the above copyright | 9 * 2. Redistributions in binary form must reproduce the above copyright |
| 10 * notice, this list of conditions and the following disclaimer in the | 10 * notice, this list of conditions and the following disclaimer in the |
| (...skipping 74 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 85 static const char ScriptSrc[]; | 85 static const char ScriptSrc[]; |
| 86 static const char StyleSrc[]; | 86 static const char StyleSrc[]; |
| 87 | 87 |
| 88 // CSP Level 2 Directives | 88 // CSP Level 2 Directives |
| 89 static const char BaseURI[]; | 89 static const char BaseURI[]; |
| 90 static const char ChildSrc[]; | 90 static const char ChildSrc[]; |
| 91 static const char FormAction[]; | 91 static const char FormAction[]; |
| 92 static const char FrameAncestors[]; | 92 static const char FrameAncestors[]; |
| 93 static const char PluginTypes[]; | 93 static const char PluginTypes[]; |
| 94 | 94 |
| 95 // Manifest Directives (to be merged into CSP Level 2) | 95 // CSP Level 3 Directives |
| 96 // https://w3c.github.io/manifest/#content-security-policy | |
| 97 static const char ManifestSrc[]; | 96 static const char ManifestSrc[]; |
| 97 static const char WorkerSrc[]; |
| 98 | 98 |
| 99 // Mixed Content Directive | 99 // Mixed Content Directive |
| 100 // https://w3c.github.io/webappsec/specs/mixedcontent/#strict-mode | 100 // https://w3c.github.io/webappsec/specs/mixedcontent/#strict-mode |
| 101 static const char BlockAllMixedContent[]; | 101 static const char BlockAllMixedContent[]; |
| 102 | 102 |
| 103 // https://w3c.github.io/webappsec/specs/upgrade/ | 103 // https://w3c.github.io/webappsec/specs/upgrade/ |
| 104 static const char UpgradeInsecureRequests[]; | 104 static const char UpgradeInsecureRequests[]; |
| 105 | 105 |
| 106 // https://mikewest.github.io/cors-rfc1918/#csp | 106 // https://mikewest.github.io/cors-rfc1918/#csp |
| 107 static const char TreatAsPublicAddress[]; | 107 static const char TreatAsPublicAddress[]; |
| (...skipping 67 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 175 // plugin-types directives from the parent document. | 175 // plugin-types directives from the parent document. |
| 176 bool allowPluginTypeForDocument(const Document&, | 176 bool allowPluginTypeForDocument(const Document&, |
| 177 const String& type, | 177 const String& type, |
| 178 const String& typeAttribute, | 178 const String& typeAttribute, |
| 179 const KURL&, | 179 const KURL&, |
| 180 ReportingStatus = SendReport) const; | 180 ReportingStatus = SendReport) const; |
| 181 | 181 |
| 182 bool allowObjectFromSource(const KURL&, | 182 bool allowObjectFromSource(const KURL&, |
| 183 RedirectStatus = RedirectStatus::NoRedirect, | 183 RedirectStatus = RedirectStatus::NoRedirect, |
| 184 ReportingStatus = SendReport) const; | 184 ReportingStatus = SendReport) const; |
| 185 bool allowChildFrameFromSource(const KURL&, | 185 bool allowFrameFromSource(const KURL&, |
| 186 RedirectStatus = RedirectStatus::NoRedirect, | 186 RedirectStatus = RedirectStatus::NoRedirect, |
| 187 ReportingStatus = SendReport) const; | 187 ReportingStatus = SendReport) const; |
| 188 bool allowImageFromSource(const KURL&, | 188 bool allowImageFromSource(const KURL&, |
| 189 RedirectStatus = RedirectStatus::NoRedirect, | 189 RedirectStatus = RedirectStatus::NoRedirect, |
| 190 ReportingStatus = SendReport) const; | 190 ReportingStatus = SendReport) const; |
| 191 bool allowFontFromSource(const KURL&, | 191 bool allowFontFromSource(const KURL&, |
| 192 RedirectStatus = RedirectStatus::NoRedirect, | 192 RedirectStatus = RedirectStatus::NoRedirect, |
| 193 ReportingStatus = SendReport) const; | 193 ReportingStatus = SendReport) const; |
| 194 bool allowMediaFromSource(const KURL&, | 194 bool allowMediaFromSource(const KURL&, |
| 195 RedirectStatus = RedirectStatus::NoRedirect, | 195 RedirectStatus = RedirectStatus::NoRedirect, |
| 196 ReportingStatus = SendReport) const; | 196 ReportingStatus = SendReport) const; |
| 197 bool allowConnectToSource(const KURL&, | 197 bool allowConnectToSource(const KURL&, |
| (...skipping 210 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
| 408 String m_disableEvalErrorMessage; | 408 String m_disableEvalErrorMessage; |
| 409 WebInsecureRequestPolicy m_insecureRequestPolicy; | 409 WebInsecureRequestPolicy m_insecureRequestPolicy; |
| 410 | 410 |
| 411 Member<CSPSource> m_selfSource; | 411 Member<CSPSource> m_selfSource; |
| 412 String m_selfProtocol; | 412 String m_selfProtocol; |
| 413 }; | 413 }; |
| 414 | 414 |
| 415 } // namespace blink | 415 } // namespace blink |
| 416 | 416 |
| 417 #endif | 417 #endif |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 2480303002:
CSP3: Implement 'worker-src'. (Closed)
