Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(169)

Unified Diff: third_party/WebKit/Source/web/LocalFrameClientImpl.cpp

Issue 2655463006: PlzNavigate: Enforce 'frame-src' CSP on the browser. (Closed)
Patch Set: Rebase. Created 3 years, 9 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
Index: third_party/WebKit/Source/web/LocalFrameClientImpl.cpp
diff --git a/third_party/WebKit/Source/web/LocalFrameClientImpl.cpp b/third_party/WebKit/Source/web/LocalFrameClientImpl.cpp
index 695797581ebac29c7df65829e33d791636e512ad..72eb1edd9b4690c68ee52918360f68f4de9844a3 100644
--- a/third_party/WebKit/Source/web/LocalFrameClientImpl.cpp
+++ b/third_party/WebKit/Source/web/LocalFrameClientImpl.cpp
@@ -534,7 +534,9 @@ NavigationPolicy LocalFrameClientImpl::decidePolicyForNavigation(
NavigationPolicy policy,
bool replacesCurrentHistoryItem,
bool isClientRedirect,
- HTMLFormElement* form) {
+ HTMLFormElement* form,
+ ContentSecurityPolicyDisposition
+ shouldCheckMainWorldContentSecurityPolicy) {
if (!m_webFrame->client())
return NavigationPolicyIgnore;
@@ -571,6 +573,10 @@ NavigationPolicy LocalFrameClientImpl::decidePolicyForNavigation(
navigationInfo.isHistoryNavigationInNewChildFrame =
isHistoryNavigationInNewChildFrame;
navigationInfo.isClientRedirect = isClientRedirect;
+ navigationInfo.shouldCheckMainWorldContentSecurityPolicy =
+ shouldCheckMainWorldContentSecurityPolicy == CheckContentSecurityPolicy
+ ? WebContentSecurityPolicyDispositionCheck
+ : WebContentSecurityPolicyDispositionDoNotCheck;
// Caching could be disabled for requests initiated by DevTools.
// TODO(ananta)
// We should extract the network cache state into a global component which
« no previous file with comments | « third_party/WebKit/Source/web/LocalFrameClientImpl.h ('k') | third_party/WebKit/Source/web/WebLocalFrameImpl.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698