diff options
| author | palmer <palmer@chromium.org> | 2015-04-16 12:23:31 -0700 |
|---|---|---|
| committer | Commit bot <commit-bot@chromium.org> | 2015-04-16 19:23:58 +0000 |
| commit | 6c3473c3489dae0bfd2133c22e6b5cd9fb4f5fef (patch) | |
| tree | 5736c397b7f4f63e7f23bf0dae618aabaa643e86 /url | |
| parent | 6e3582ad1a058af30aa44ca7fae2113b050aa437 (diff) | |
| download | chromium_src-6c3473c3489dae0bfd2133c22e6b5cd9fb4f5fef.zip chromium_src-6c3473c3489dae0bfd2133c22e6b5cd9fb4f5fef.tar.gz chromium_src-6c3473c3489dae0bfd2133c22e6b5cd9fb4f5fef.tar.bz2 | |
Add IsOriginSecure and GURL::SchemeUsesTLS.
Standard functions for people to check if content from an origin can be
considered to have been transferred to the browser securely, as defined in
https://www.w3.org/TR/powerful-features/#is-origin-trustworthy.
BUG=362214,470142
Review URL: https://codereview.chromium.org/1049533002
Cr-Commit-Position: refs/heads/master@{#325495}
Diffstat (limited to 'url')
| -rw-r--r-- | url/gurl.h | 28 |
1 files changed, 24 insertions, 4 deletions
@@ -223,10 +223,31 @@ class URL_EXPORT GURL { return SchemeIs(url::kFileSystemScheme); } - // If the scheme indicates a secure connection + // Returns true if the scheme indicates a secure connection. + // + // NOTE: This function is deprecated. You probably want |SchemeUsesTLS| (if + // you just want to know if a scheme uses TLS for network transport) or + // Chromium's |IsOriginSecure| for a higher-level test about an origin's + // security. See those functions' documentation for more detail. + // + // TODO(palmer): Audit callers and change them to |SchemeUsesTLS| or + // |IsOriginSecure|, as appropriate. Then remove |SchemeIsSecure|. + // crbug.com/362214 bool SchemeIsSecure() const { return SchemeIs(url::kHttpsScheme) || SchemeIs(url::kWssScheme) || - (SchemeIsFileSystem() && inner_url() && inner_url()->SchemeIsSecure()); + (SchemeIsFileSystem() && inner_url() && + inner_url()->SchemeIsSecure()); + } + + // Returns true if the scheme indicates a network connection that uses TLS for + // security. + // + // This function is a not a complete test of whether or not an origin's code + // is minimally trustworthy. For that, see Chromium's |IsOriginSecure| for a + // higher-level and more complete semantics. See that function's documentation + // for more detail. + bool SchemeUsesTLS() const { + return SchemeIs(url::kHttpsScheme) || SchemeIs(url::kWssScheme); } // Returns true if the scheme is "blob". @@ -241,7 +262,6 @@ class URL_EXPORT GURL { // Returns true if the hostname is an IP address. Note: this function isn't // as cheap as a simple getter because it re-parses the hostname to verify. - // This currently identifies only IPv4 addresses (bug 822685). bool HostIsIPAddress() const; // Getters for various components of the URL. The returned string will be @@ -310,7 +330,7 @@ class URL_EXPORT GURL { // values defined in Parsed for ExtractPort. int IntPort() const; - // Returns the port number of the url, or the default port number. + // Returns the port number of the URL, or the default port number. // If the scheme has no concept of port (or unknown default) returns // PORT_UNSPECIFIED. int EffectiveIntPort() const; |