| Index: extensions/renderer/dispatcher.cc
|
| diff --git a/extensions/renderer/dispatcher.cc b/extensions/renderer/dispatcher.cc
|
| index 90aad5c3fe92cfada1a1dee4ca591aace1651a55..71574fff8ed8b1ca37977fa5ef033e2887fd1c47 100644
|
| --- a/extensions/renderer/dispatcher.cc
|
| +++ b/extensions/renderer/dispatcher.cc
|
| @@ -269,11 +269,6 @@ Dispatcher::Dispatcher(DispatcherDelegate* delegate)
|
| // Register WebSecurityPolicy whitelists for the chrome-extension:// scheme.
|
| WebString extension_scheme(WebString::fromASCII(kExtensionScheme));
|
|
|
| - // Resources should bypass Content Security Policy checks when included in
|
| - // protected resources. TODO(kalman): What are "protected resources"?
|
| - WebSecurityPolicy::registerURLSchemeAsBypassingContentSecurityPolicy(
|
| - extension_scheme);
|
| -
|
| // Extension resources are HTTP-like and safe to expose to the fetch API. The
|
| // rules for the fetch API are consistent with XHR.
|
| WebSecurityPolicy::registerURLSchemeAsSupportingFetchAPI(extension_scheme);
|
|
|
Chromium Code Reviews
Issue 2679383003:
Share schemes needed for CSP between the browser and the renderer. (Closed)
