Transfer SecurityOrigin overrides to Workers.

Source/web/WebEmbeddedWorkerImpl.cpp

Index: Source/web/WebEmbeddedWorkerImpl.cpp
diff --git a/Source/web/WebEmbeddedWorkerImpl.cpp b/Source/web/WebEmbeddedWorkerImpl.cpp
index a9b82e734e3fb8a5a0780503e83aa88f07a42d4e..0c501464ee5155aaf4ad97a709f218a666af37a5 100644
--- a/Source/web/WebEmbeddedWorkerImpl.cpp
+++ b/Source/web/WebEmbeddedWorkerImpl.cpp
@@ -402,6 +402,9 @@ void WebEmbeddedWorkerImpl::startWorkerThread()
     if (InspectorInstrumentation::shouldPauseDedicatedWorkerOnStart(document))
         startMode = PauseWorkerGlobalScopeOnStart;
 
+    // FIXME: this document's origin is pristine and without any extra privileges.

[Mike West, 2014/09/29 07:37:22]

Can you point to a bug here? I don't understand the context of the comment...

[sof, 2014/09/29 09:42:28]

Added crbug.com xref.

+    SecurityOrigin* starterOrigin = document->securityOrigin();
+
     OwnPtrWillBeRawPtr<WorkerClients> workerClients = WorkerClients::create();
     providePermissionClientToWorker(workerClients.get(), m_permissionClient.release());
     provideServiceWorkerGlobalScopeClientToWorker(workerClients.get(), ServiceWorkerGlobalScopeClientImpl::create(*m_workerContextClient));
@@ -416,6 +419,7 @@ void WebEmbeddedWorkerImpl::startWorkerThread()
             // FIXME: fill appropriate CSP info and policy type.
             String(),
             ContentSecurityPolicyHeaderTypeEnforce,
+            starterOrigin,
             workerClients.release());
 
     m_mainScriptLoader.clear();