Index: content/common/navigation_params.h |
diff --git a/content/common/navigation_params.h b/content/common/navigation_params.h |
index c47da6b89c797ca8ceb40b93f578effdf10bbe92..2673ed94ca5a8aa5f970e0ced4bbd7b88357888b 100644 |
--- a/content/common/navigation_params.h |
+++ b/content/common/navigation_params.h |
@@ -58,7 +58,8 @@ struct CONTENT_EXPORT CommonNavigationParams { |
PreviewsState previews_state, |
const base::TimeTicks& navigation_start, |
std::string method, |
- const scoped_refptr<ResourceRequestBodyImpl>& post_data); |
+ const scoped_refptr<ResourceRequestBodyImpl>& post_data, |
+ bool should_bypass_main_world_CSP); |
alexmos
2017/02/10 22:59:53
for style consistency, I'd favor lowercasing the C
arthursonzogni
2017/02/13 16:33:20
Done.
|
CommonNavigationParams(const CommonNavigationParams& other); |
~CommonNavigationParams(); |
@@ -119,6 +120,13 @@ struct CONTENT_EXPORT CommonNavigationParams { |
// Body of HTTP POST request. |
scoped_refptr<ResourceRequestBodyImpl> post_data; |
+ |
+ // Whether or not this navigation, including each redirections, should be |
+ // checked against the Content-Security-Policy(CSP) of the frames that |
+ // surround it. It is actually used to bypass the 'frame-src' and 'child-src' |
alexmos
2017/02/10 22:59:53
nit: drop "actually"
alexmos
2017/02/10 22:59:53
"frames that surround it" is a big vague. Should
arthursonzogni
2017/02/13 16:33:20
Done. I misunderstood what "main_world" means, it
alexmos
2017/02/14 06:57:20
Interesting, thanks. It's sad that an evil render
|
+ // CSPs when the resource that triggers this navigation lives in an isolated |
+ // world. |
+ bool should_bypass_main_world_CSP; |
alexmos
2017/02/10 22:59:53
Do we have tests that things work properly when th
arthursonzogni
2017/02/13 16:33:20
Yes, I did this to make this test work:
http/tests
alexmos
2017/02/14 06:57:20
Acknowledged.
|
}; |
// Provided by the renderer ---------------------------------------------------- |