Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(2182)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: content/browser/frame_host/navigation_request.cc

Issue 2764363002: PlzNavigate: sanitize the referrer in NavigationRequest (Closed)
Patch Set: Addressed comments Created 3 years, 9 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « content/browser/browser_side_navigation_browsertest.cc ('k') | content/shell/browser/shell_network_delegate.h » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: content/browser/frame_host/navigation_request.cc
diff --git a/content/browser/frame_host/navigation_request.cc b/content/browser/frame_host/navigation_request.cc
index a5a193160646054bdf9751aaf94b7c100b7092ed..759ab5e1b0ab78778220c8be86a02b2772a11971 100644
--- a/content/browser/frame_host/navigation_request.cc
+++ b/content/browser/frame_host/navigation_request.cc
@@ -313,6 +313,11 @@ NavigationRequest::NavigationRequest(
associated_site_instance_type_(AssociatedSiteInstanceType::NONE),
may_transfer_(may_transfer) {
DCHECK(!browser_initiated || (entry != nullptr && frame_entry != nullptr));
+
+ // Sanitize the referrer.
+ common_params_.referrer =
+ Referrer::SanitizeForRequest(common_params_.url, common_params_.referrer);
+
if (may_transfer) {
FrameNavigationEntry* frame_entry = entry->GetFrameEntry(frame_tree_node);
if (frame_entry) {
@@ -463,6 +468,8 @@ void NavigationRequest::OnRequestRedirected(
common_params_.url = redirect_info.new_url;
common_params_.method = redirect_info.new_method;
common_params_.referrer.url = GURL(redirect_info.new_referrer);
+ common_params_.referrer =
+ Referrer::SanitizeForRequest(common_params_.url, common_params_.referrer);
// For non browser initiated navigations we need to check if the source has
// access to the URL. We always allow browser initiated requests.
« no previous file with comments | « content/browser/browser_side_navigation_browsertest.cc ('k') | content/shell/browser/shell_network_delegate.h » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698