Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(16)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: third_party/WebKit/public/platform/WebContentSecurityPolicyStruct.h

Issue 2655463006: PlzNavigate: Enforce 'frame-src' CSP on the browser. (Closed)
Patch Set: Add TODO in the FrameLoader. Created 3 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« content/renderer/content_security_policy_util.cc ('K') | « third_party/WebKit/Source/web/WebLocalFrameImpl.cpp ('k') | third_party/WebKit/public/web/WebFrameClient.h » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 /* 1 /*
2 * Copyright (C) 2012 Google Inc. All rights reserved. 2 * Copyright (C) 2012 Google Inc. All rights reserved.
3 * 3 *
4 * Redistribution and use in source and binary forms, with or without 4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions are 5 * modification, are permitted provided that the following conditions are
6 * met: 6 * met:
7 * 7 *
8 * * Redistributions of source code must retain the above copyright 8 * * Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer. 9 * notice, this list of conditions and the following disclaimer.
10 * * Redistributions in binary form must reproduce the above 10 * * Redistributions in binary form must reproduce the above
(...skipping 15 matching lines...) Expand all
26 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 26 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE 27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
28 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 28 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
29 */ 29 */
30 30
31 #ifndef WebContentSecurityPolicyStruct_h 31 #ifndef WebContentSecurityPolicyStruct_h
32 #define WebContentSecurityPolicyStruct_h 32 #define WebContentSecurityPolicyStruct_h
33 33
34 #include "public/platform/WebContentSecurityPolicy.h" 34 #include "public/platform/WebContentSecurityPolicy.h"
35 #include "public/platform/WebString.h" 35 #include "public/platform/WebString.h"
36 #include "public/platform/WebURL.h"
36 #include "public/platform/WebVector.h" 37 #include "public/platform/WebVector.h"
37 38
38 namespace blink { 39 namespace blink {
39 40
40 enum WebWildcardDisposition { 41 enum WebWildcardDisposition {
41 WebWildcardDispositionNoWildcard, 42 WebWildcardDispositionNoWildcard,
42 WebWildcardDispositionHasWildcard 43 WebWildcardDispositionHasWildcard
43 }; 44 };
44 45
45 struct WebContentSecurityPolicySourceExpression { 46 struct WebContentSecurityPolicySourceExpression {
(...skipping 16 matching lines...) Expand all
62 WebContentSecurityPolicySourceList sourceList; 63 WebContentSecurityPolicySourceList sourceList;
63 }; 64 };
64 65
65 struct WebContentSecurityPolicyPolicy { 66 struct WebContentSecurityPolicyPolicy {
66 WebContentSecurityPolicyType disposition; 67 WebContentSecurityPolicyType disposition;
67 WebContentSecurityPolicySource source; 68 WebContentSecurityPolicySource source;
68 WebVector<WebContentSecurityPolicyDirective> directives; 69 WebVector<WebContentSecurityPolicyDirective> directives;
69 WebVector<WebString> reportEndpoints; 70 WebVector<WebString> reportEndpoints;
70 }; 71 };
71 72
73 struct WebContentSecurityPolicyViolation {
74 // The name of the directive that infringe the policy. |directive| might be a
75 // directive that serves as a fallback to the |effective_directive|.
76 WebString directive;
77
78 // The name the effective directive that was checked against.
79 WebString effectiveDirective;
80
81 // The console message that was displayed to the user.
82 WebString consoleMessage;
83
84 // The URL that was blocked by the policy.
85 WebURL blockedUrl;
86
87 // The set of URI where a JSON-formatted report of the violation should be
88 // sent.
89 WebVector<WebString> reportEndpoints;
90
91 // The raw content security policy header that was infringed.
92 WebString header;
93
94 // Each policy has an associated disposition, which is either "enforce" or
95 // "report".
96 WebContentSecurityPolicyType disposition;
97
98 // Whether or not the violation happens after a redirect.
99 bool followedRedirect;
100 };
101
72 } // namespace blink 102 } // namespace blink
73 103
74 #endif 104 #endif
OLDNEW
« content/renderer/content_security_policy_util.cc ('K') | « third_party/WebKit/Source/web/WebLocalFrameImpl.cpp ('k') | third_party/WebKit/public/web/WebFrameClient.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698