OLD | NEW |
1 /* | 1 /* |
2 * Copyright (C) 2011 Google, Inc. All rights reserved. | 2 * Copyright (C) 2011 Google, Inc. All rights reserved. |
3 * | 3 * |
4 * Redistribution and use in source and binary forms, with or without | 4 * Redistribution and use in source and binary forms, with or without |
5 * modification, are permitted provided that the following conditions | 5 * modification, are permitted provided that the following conditions |
6 * are met: | 6 * are met: |
7 * 1. Redistributions of source code must retain the above copyright | 7 * 1. Redistributions of source code must retain the above copyright |
8 * notice, this list of conditions and the following disclaimer. | 8 * notice, this list of conditions and the following disclaimer. |
9 * 2. Redistributions in binary form must reproduce the above copyright | 9 * 2. Redistributions in binary form must reproduce the above copyright |
10 * notice, this list of conditions and the following disclaimer in the | 10 * notice, this list of conditions and the following disclaimer in the |
(...skipping 328 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
339 | 339 |
340 bool experimentalFeaturesEnabled() const; | 340 bool experimentalFeaturesEnabled() const; |
341 | 341 |
342 bool shouldSendCSPHeader(Resource::Type) const; | 342 bool shouldSendCSPHeader(Resource::Type) const; |
343 | 343 |
344 CSPSource* getSelfSource() const { return m_selfSource; } | 344 CSPSource* getSelfSource() const { return m_selfSource; } |
345 | 345 |
346 static bool shouldBypassMainWorld(const ExecutionContext*); | 346 static bool shouldBypassMainWorld(const ExecutionContext*); |
347 | 347 |
348 static bool isNonceableElement(const Element*); | 348 static bool isNonceableElement(const Element*); |
| 349 static const char* getNonceReplacementString() { return "[Replaced]"; } |
349 | 350 |
350 // This method checks whether the request should be allowed for an | 351 // This method checks whether the request should be allowed for an |
351 // experimental EmbeddingCSP feature | 352 // experimental EmbeddingCSP feature |
352 // Please, see https://w3c.github.io/webappsec-csp/embedded/#origin-allowed. | 353 // Please, see https://w3c.github.io/webappsec-csp/embedded/#origin-allowed. |
353 static bool shouldEnforceEmbeddersPolicy(const ResourceResponse&, | 354 static bool shouldEnforceEmbeddersPolicy(const ResourceResponse&, |
354 SecurityOrigin*); | 355 SecurityOrigin*); |
355 | 356 |
356 static const char* getDirectiveName(const DirectiveType&); | 357 static const char* getDirectiveName(const DirectiveType&); |
357 static DirectiveType getDirectiveType(const String& name); | 358 static DirectiveType getDirectiveType(const String& name); |
358 | 359 |
(...skipping 49 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... |
408 String m_disableEvalErrorMessage; | 409 String m_disableEvalErrorMessage; |
409 WebInsecureRequestPolicy m_insecureRequestPolicy; | 410 WebInsecureRequestPolicy m_insecureRequestPolicy; |
410 | 411 |
411 Member<CSPSource> m_selfSource; | 412 Member<CSPSource> m_selfSource; |
412 String m_selfProtocol; | 413 String m_selfProtocol; |
413 }; | 414 }; |
414 | 415 |
415 } // namespace blink | 416 } // namespace blink |
416 | 417 |
417 #endif | 418 #endif |
OLD | NEW |