Transfer SecurityOrigin overrides to Workers.

Source/platform/weborigin/SecurityOrigin.h

 /*
  * Copyright (C) 2007, 2008 Apple Inc. All rights reserved.
  *
  * Redistribution and use in source and binary forms, with or without
  * modification, are permitted provided that the following conditions
  * are met:
  *
  * 1.  Redistributions of source code must retain the above copyright
  *     notice, this list of conditions and the following disclaimer.
  * 2.  Redistributions in binary form must reproduce the above copyright
@@ skipping 185 matching lines @@
     AtomicString toRawAtomicString() const;
 
     // This method checks for equality, ignoring the value of document.domain
     // (and whether it was set) but considering the host. It is used for postMessage.
     bool isSameSchemeHostPort(const SecurityOrigin*) const;
 
     bool needsDatabaseIdentifierQuirkForFiles() const { return m_needsDatabaseIdentifierQuirkForFiles; }
 
     static const String& urlWithUniqueSecurityOrigin();
 
+    // A SecurityOrigin can be configured/mutated to take global origin
+    // policy constraints and overrides into account. These policy overrides
+    // can be transferred from one SecurityOrigin and applied to another.
+    class PolicyOverrides {

[Mike West, 2014/09/26 11:29:10]

It might be simpler to model this as a struct; there's no real reason to push
things through getters and setters into private variables if all you're doing is
passing two values around.

+    public:
+        PolicyOverrides()
+            : m_grantUniversalAccess(false)
+            , m_enforceFilePathSeparation(false)
+        {
+        }
+
+        PolicyOverrides(bool grantUniversalAccess, bool enforceFilePathSeparation)
+            : m_grantUniversalAccess(grantUniversalAccess)
+            , m_enforceFilePathSeparation(enforceFilePathSeparation)
+        {
+        }
+
+        // Mirrors what SecurityOrigin::grantUniversalAccess() grants.
+        bool grantUniversalAccess() const { return m_grantUniversalAccess; }
+
+        // Mirrors what SecurityOrigin::enforceFilePathSeparation() grants.
+        bool enforceFilePathSeparation() const { return m_enforceFilePathSeparation; }

[Mike West, 2014/09/26 11:29:10]

These both sound a bit strange. Perhaps "doesGrantUniversalAccess"? Without the
"does" it sounds like an action rather than a getter.

+
+    private:
+        bool m_grantUniversalAccess;
+        bool m_enforceFilePathSeparation;
+    };
+
+    // Return the origin policy overrides of this origin.
+    PolicyOverrides policyOverrides() const;
+
+    // Apply the overrides to this origin. Overrides that
+    // are set will be enabled, those that aren't will be
+    // cleared.
+    void applyPolicyOverrides(const PolicyOverrides&);
+
 private:
     SecurityOrigin();
     explicit SecurityOrigin(const KURL&);
     explicit SecurityOrigin(const SecurityOrigin*);
 
     // FIXME: Rename this function to something more semantic.
     bool passesFileCheck(const SecurityOrigin*) const;
     void buildRawString(StringBuilder&) const;
 
     String m_protocol;
     String m_host;
     String m_domain;
     String m_filePath;
     unsigned short m_port;
     bool m_isUnique;
     bool m_universalAccess;
     bool m_domainWasSetInDOM;
     bool m_canLoadLocalResources;
     bool m_enforceFilePathSeparation;
     bool m_needsDatabaseIdentifierQuirkForFiles;
 };
 
 } // namespace blink
 
 #endif // SecurityOrigin_h