third_party/WebKit/Source/web/WebFrameSerializer.cpp - Issue 2560693002: Disable form elements in MHTML

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: third_party/WebKit/Source/web/WebFrameSerializer.cpp

Issue 2560693002: Disable form elements in MHTML (Closed)

Patch Set: Patch Created 4 years ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

« no previous file with comments | « third_party/WebKit/Source/core/frame/FrameSerializer.cpp ('k') | third_party/WebKit/Source/web/tests/WebFrameSerializerTest.cpp » ('j') | third_party/WebKit/Source/web/tests/data/frameserialization/form.html » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: third_party/WebKit/Source/web/WebFrameSerializer.cpp

diff --git a/third_party/WebKit/Source/web/WebFrameSerializer.cpp b/third_party/WebKit/Source/web/WebFrameSerializer.cpp

index e5e719e323f6557ce0df120451e1fb8c415d6369..61c70cbb6c9b52a994e09de175297d3b19ec5d3f 100644

--- a/third_party/WebKit/Source/web/WebFrameSerializer.cpp

+++ b/third_party/WebKit/Source/web/WebFrameSerializer.cpp

@@ -85,6 +85,7 @@ class MHTMLFrameSerializerDelegate final : public FrameSerializer::Delegate {

bool rewriteLink(const Element&, String& rewrittenLink) override;

bool shouldSkipResourceWithURL(const KURL&) override;

bool shouldSkipResource(const Resource&) override;

+ Vector<Attribute> getCustomAttributes(const Element&) override;

private:

WebFrameSerializer::MHTMLPartsGenerationDelegate& m_webDelegate;

@@ -166,6 +167,30 @@ bool MHTMLFrameSerializerDelegate::shouldSkipResource(

resource.hasCacheControlNoStoreHeader();

}

+Vector<Attribute> MHTMLFrameSerializerDelegate::getCustomAttributes(

+ const Element& element) {

+ Vector<Attribute> attributes;

+ // Disable all form elements in MTHML to tell the user that the form cannot be

+ // worked on. MHTML is loaded in full sandboxing mode which disable the form

+ // submission and script execution.

+ if (element.isFormControlElement()) {

+ bool hasDisabledAttribute = false;

+ for (const auto& attribute : element.attributes()) {

carlosk 2016/12/07 21:07:23 Using one of Element's own methods methods to do t

jianli 2016/12/07 22:10:48 Done.

+ if (attribute.name() == HTMLNames::disabledAttr) {

+ hasDisabledAttribute = true;

+ break;

+ }

+ if (!hasDisabledAttribute) {

+ Attribute disabledAttribute(HTMLNames::disabledAttr, "");

+ attributes.append(disabledAttribute);

+ }

+ return attributes;

bool cacheControlNoStoreHeaderPresent(

const WebLocalFrameImpl& webLocalFrameImpl) {

const ResourceResponse& response =