commit | 53378481ea3dfd52d2209bcf49ef55b34e4ff2b3 | [log] [tgz] |
---|---|---|
author | Frédéric Wang <fwang@igalia.com> | Fri Jan 15 09:24:05 2021 |
committer | Chromium LUCI CQ <chromium-scoped@luci-project-accounts.iam.gserviceaccount.com> | Fri Jan 15 09:24:05 2021 |
tree | 98835f1882bd079f46359de2e4a7c222ab4aed11 | |
parent | 09d36575ecb6bdce99825c887aac9a75cdf9ad21 [diff] |
Remove SecurityPolicy APIs for handling a trustworthy safelist This CL removes the following methods: WebSecurityPolicy::AddOriginToTrustworthySafelist SecurityPolicy::AddOriginToTrustworthySafelist SecurityPolicy::IsOriginTrustworthySafelisted Outside tests, these methods are only used to populate SecurityPolicy's safelist from SecureOriginAllowlist. The last one is only called from SecurityOrigin::IsSecure and SecurityOrigin::IsPotentiallyTrustworthy, but they can rely on SecureOriginAllowlist::IsOriginAllowlisted instead. Some tests also rely on SecurityPolicy::AddOriginToTrustworthySafelist, but they can directly set the command line parameters to configure the allow list accordingly. There is no observable behavior change but this makes easier to compare SecurityOrigin::IsSecure and SecurityOrigin::IsPotentiallyTrustworthy with network::IsURLPotentiallyTrustworthy, to facilitate unification of all these APIs. Bug: 1153336 Change-Id: I2df13abbdf697ec78136a16373b0b9fc6372bf88 Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2612947 Reviewed-by: Mike West <mkwst@chromium.org> Reviewed-by: Sean Topping <seantopping@chromium.org> Commit-Queue: Frédéric Wang <fwang@igalia.com> Cr-Commit-Position: refs/heads/master@{#844000}
Chromium is an open-source browser project that aims to build a safer, faster, and more stable way for all users to experience the web.
The project's web site is https://www.chromium.org.
To check out the source code locally, don't use git clone
! Instead, follow the instructions on how to get the code.
Documentation in the source is rooted in docs/README.md.
Learn how to Get Around the Chromium Source Code Directory Structure .
For historical reasons, there are some small top level directories. Now the guidance is that new top level directories are for product (e.g. Chrome, Android WebView, Ash). Even if these products have multiple executables, the code should be in subdirectories of the product.