Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(262)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: third_party/WebKit/Source/core/frame/Frame.cpp

Issue 2623633002: Turn off requirement that cross-origin top navigation be accompanied by a user gesture. (Closed)
Patch Set: Created 3 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « third_party/WebKit/Source/core/frame/Frame.h ('k') | third_party/WebKit/Source/core/frame/LocalFrame.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: third_party/WebKit/Source/core/frame/Frame.cpp
diff --git a/third_party/WebKit/Source/core/frame/Frame.cpp b/third_party/WebKit/Source/core/frame/Frame.cpp
index 88324f2fd5432f60b555a08f2b7c0255430d0e76..871e6409dd5ca9a5b6ef51096e78d289621edc2e 100644
--- a/third_party/WebKit/Source/core/frame/Frame.cpp
+++ b/third_party/WebKit/Source/core/frame/Frame.cpp
@@ -182,16 +182,38 @@ bool Frame::canNavigate(const Frame& targetFrame) {
if (isAllowedNavigation)
framebustParams |= allowedBit;
framebustHistogram.count(framebustParams);
+ if (hasUserGesture || isAllowedNavigation)
+ return true;
// Frame-busting used to be generally allowed in most situations, but may
- // now blocked if there is no user gesture.
+ // now blocked if the document initiating the navigation has never received
+ // a user gesture.
if (!RuntimeEnabledFeatures::
- framebustingNeedsSameOriginOrUserGestureEnabled())
- return true;
- if (hasUserGesture || isAllowedNavigation)
+ framebustingNeedsSameOriginOrUserGestureEnabled()) {
+ String targetFrameDescription =
+ targetFrame.isLocalFrame()
+ ? "with URL '" +
+ toLocalFrame(targetFrame).document()->url().getString() +
+ "'"
+ : "with origin '" +
+ targetFrame.securityContext()
+ ->getSecurityOrigin()
+ ->toString() +
+ "'";
+ String message = "Frame with URL '" +
+ toLocalFrame(this)->document()->url().getString() +
+ "' attempted to navigate its top-level window " +
+ targetFrameDescription +
+ ". Navigating the top-level window from a cross-origin "
+ "iframe will soon require that the iframe has received "
+ "a user gesture. See "
+ "https://www.chromestatus.com/features/"
+ "5851021045661696.";
+ printNavigationWarning(message);
return true;
+ }
errorReason =
"The frame attempting navigation is targeting its top-level window, "
- "but is neither same-origin with its target nor is it processing a "
+ "but is neither same-origin with its target nor has it received a "
"user gesture. See "
"https://www.chromestatus.com/features/5851021045661696.";
printNavigationErrorMessage(targetFrame, errorReason.latin1().data());
« no previous file with comments | « third_party/WebKit/Source/core/frame/Frame.h ('k') | third_party/WebKit/Source/core/frame/LocalFrame.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698