content/browser/frame_host/navigator_impl.cc - Issue 2655463006: PlzNavigate: Enforce 'frame-src' CSP on the browser. - Code Review

Chromium Code Reviews

chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out

(426)

My Issues | Starred Open | Closed | All

Unified Diff: content/browser/frame_host/navigator_impl.cc

Issue 2655463006: PlzNavigate: Enforce 'frame-src' CSP on the browser. (Closed)

Patch Set: Rebase. Created 3 years, 10 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

« content/browser/frame_host/csp_context_impl.h ('K') | « content/browser/frame_host/navigation_request.cc ('k') | content/browser/frame_host/render_frame_host_impl.h » ('j') | content/browser/frame_host/render_frame_host_impl.h » ('J')
Expand Comments ('e') | Collapse Comments ('c') | Hide Comments ('s')

Index: content/browser/frame_host/navigator_impl.cc

diff --git a/content/browser/frame_host/navigator_impl.cc b/content/browser/frame_host/navigator_impl.cc

index b9e03c5be03966179ec456c75761e90c4b18855e..010f9ae3440620a17d4b33b8e1e1594eaf4ddf97 100644

--- a/content/browser/frame_host/navigator_impl.cc

+++ b/content/browser/frame_host/navigator_impl.cc

@@ -231,7 +231,8 @@ void NavigatorImpl::DidStartProvisionalLoad(

validated_url, validated_redirect_chain,

render_frame_host->frame_tree_node(), is_renderer_initiated,

false, // is_same_page

- navigation_start, pending_nav_entry_id, started_from_context_menu));

+ navigation_start, pending_nav_entry_id, started_from_context_menu,

+ false)); // should_bypass_main_world_csp

}

void NavigatorImpl::DidFailProvisionalLoadWithError(

@@ -612,6 +613,7 @@ void NavigatorImpl::DidNavigate(

// Navigating to a new location means a new, fresh set of http headers and/or

// <meta> elements - we need to reset CSP and Feature Policy.

if (!is_navigation_within_page) {

+ render_frame_host->ResetContentSecurityPolicy();

render_frame_host->frame_tree_node()->ResetContentSecurityPolicy();

render_frame_host->frame_tree_node()->ResetFeaturePolicyHeader();

}

« content/browser/frame_host/csp_context_impl.h ('K') | « content/browser/frame_host/navigation_request.cc ('k') | content/browser/frame_host/render_frame_host_impl.h » ('j') | content/browser/frame_host/render_frame_host_impl.h » ('J')

Powered by Google App Engine

This is Rietveld 408576698