Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(2016)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: content/public/browser/child_process_security_policy.h

Issue 2973433003: Block redirects to renderer-debug urls. (Closed)
Patch Set: Add CanRedirectToURL Created 3 years, 5 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« content/browser/child_process_security_policy_impl.cc ('K') | « content/browser/frame_host/navigation_request.cc ('k') | no next file » | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: content/public/browser/child_process_security_policy.h
diff --git a/content/public/browser/child_process_security_policy.h b/content/public/browser/child_process_security_policy.h
index 1bbe218dc6009e3b36b09fde7c7cd9113e8506c7..396777370d11c4f050842f45044d76df644a3d56 100644
--- a/content/public/browser/child_process_security_policy.h
+++ b/content/public/browser/child_process_security_policy.h
@@ -87,6 +87,9 @@ class ChildProcessSecurityPolicy {
// calls this method to determine whether it is safe.
virtual bool CanRequestURL(int child_id, const GURL& url) = 0;
+ // Determine whether a redirect is allowed to proceed.
+ virtual bool CanRedirectToURL(const GURL& url) = 0;
+
// Whether the process is allowed to commit a document from the given URL.
// This is more restrictive than CanRequestURL, since CanRequestURL allows
// requests that might lead to cross-process navigations or external protocol
« content/browser/child_process_security_policy_impl.cc ('K') | « content/browser/frame_host/navigation_request.cc ('k') | no next file » | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698