Implement ContentSecurityPolicy on the browser-side.

content/common/content_security_policy/csp_source_list.h

Index: content/common/content_security_policy/csp_source_list.h
diff --git a/content/common/content_security_policy/csp_source_list.h b/content/common/content_security_policy/csp_source_list.h
new file mode 100644
index 0000000000000000000000000000000000000000..4fafb439a0ff0f300319c3e1cd90d379ff8da9f5
--- /dev/null
+++ b/content/common/content_security_policy/csp_source_list.h
@@ -0,0 +1,44 @@
+// Copyright 2017 The Chromium Authors. All rights reserved.
+// Use of this source code is governed by a BSD-style license that can be
+// found in the LICENSE file.
+
+#ifndef CONTENT_COMMON_CONTENT_SECURITY_POLICY_CSP_SOURCE_LIST_H_
+#define CONTENT_COMMON_CONTENT_SECURITY_POLICY_CSP_SOURCE_LIST_H_
+
+#include <vector>
+
+#include "content/common/content_security_policy/csp_source.h"
+#include "url/gurl.h"
+
+namespace content {
+
+class CSPContext;
+
+struct CONTENT_EXPORT CSPSourceList {
+  CSPSourceList();
+  CSPSourceList(bool allow_self,
+                bool allow_star,
+                std::vector<CSPSource> source_list);
+  CSPSourceList(const CSPSourceList&);
+  ~CSPSourceList();
+
+  // Wildcard hosts and 'self' aren't stored in source_list, but as attributes
+  // on the source list itself.
+  bool allow_self;
+  bool allow_star;
+  std::vector<CSPSource> sources;
+
+  std::string ToString() const;
+
+  bool IsNone() const;
+
+  // Return true when at least one source in the |source_list| matches the
+  // |url| for a given |context|.
+  static bool Allow(const CSPSourceList& source_list,
+                    const GURL& url,
+                    CSPContext* context,
+                    bool is_redirect = false);
+};
+
+}  // namespace content
+#endif  // CONTENT_COMMON_CONTENT_SECURITY_POLICY_CSP_SOURCE_LIST_H_