Chromium Code Reviews Chromium Code Reviews
Issue 10830118:
net: add codereview sites to HSTS preloaded. (Closed)
Base URL: svn://svn.chromium.org/chrome/trunk/src| OLD | NEW |
|---|---|
| 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. | 1 // Copyright (c) 2012 The Chromium Authors. All rights reserved. |
| 2 // Use of this source code is governed by a BSD-style license that can be | 2 // Use of this source code is governed by a BSD-style license that can be |
| 3 // found in the LICENSE file. | 3 // found in the LICENSE file. |
| 4 | 4 |
| 5 // This file contains the HSTS preloaded list in a machine readable format. | 5 // This file contains the HSTS preloaded list in a machine readable format. |
| 6 | 6 |
| 7 // The top-level element is a dictionary with two keys: "pinsets" maps details | 7 // The top-level element is a dictionary with two keys: "pinsets" maps details |
| 8 // of certificate pinning to a name and "entries" contains the HSTS details for | 8 // of certificate pinning to a name and "entries" contains the HSTS details for |
| 9 // each host. | 9 // each host. |
| 10 // | 10 // |
| (...skipping 147 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 158 { "name": "plus.google.com", "include_subdomains": true, "mode": "force-http s", "pins": "google" }, | 158 { "name": "plus.google.com", "include_subdomains": true, "mode": "force-http s", "pins": "google" }, |
| 159 { "name": "script.google.com", "include_subdomains": true, "mode": "force-ht tps", "pins": "google" }, | 159 { "name": "script.google.com", "include_subdomains": true, "mode": "force-ht tps", "pins": "google" }, |
| 160 | 160 |
| 161 // Other Google related domain that must use HTTPS. | 161 // Other Google related domain that must use HTTPS. |
| 162 { "name": "market.android.com", "include_subdomains": true, "mode": "force-h ttps", "pins": "google" }, | 162 { "name": "market.android.com", "include_subdomains": true, "mode": "force-h ttps", "pins": "google" }, |
| 163 { "name": "ssl.google-analytics.com", "include_subdomains": true, "mode": "f orce-https", "pins": "google" }, | 163 { "name": "ssl.google-analytics.com", "include_subdomains": true, "mode": "f orce-https", "pins": "google" }, |
| 164 { "name": "drive.google.com", "include_subdomains": true, "mode": "force-htt ps", "pins": "google" }, | 164 { "name": "drive.google.com", "include_subdomains": true, "mode": "force-htt ps", "pins": "google" }, |
| 165 { "name": "googleplex.com", "include_subdomains": true, "mode": "force-https ", "pins": "google" }, | 165 { "name": "googleplex.com", "include_subdomains": true, "mode": "force-https ", "pins": "google" }, |
| 166 { "name": "groups.google.com", "include_subdomains": true, "mode": "force-ht tps", "pins": "google" }, | 166 { "name": "groups.google.com", "include_subdomains": true, "mode": "force-ht tps", "pins": "google" }, |
| 167 { "name": "apis.google.com", "include_subdomains": true, "mode": "force-http s", "pins": "google" }, | 167 { "name": "apis.google.com", "include_subdomains": true, "mode": "force-http s", "pins": "google" }, |
| 168 { "name": "chromiumcodereview.appspot.com", "include_subdomains": true, "mod e": "force-https", "pins": "google" }, | |
| 169 { "name": "codereview.appspot.com", "include_subdomains": true, "mode": "for ce-https", "pins": "google" }, | |
|
palmer
2012/08/01 18:39:09
Also codereview.chromium.org is a synonym. Of cou
| |
| 168 | 170 |
| 169 // chart.apis.google.com is *not* HSTS because the certificate doesn't match | 171 // chart.apis.google.com is *not* HSTS because the certificate doesn't match |
| 170 // and there are lots of links out there that still use the name. The correc t | 172 // and there are lots of links out there that still use the name. The correc t |
| 171 // hostname for this is chart.googleapis.com. | 173 // hostname for this is chart.googleapis.com. |
| 172 { "name": "chart.apis.google.com", "include_subdomains": true, "pins": "goog le" }, | 174 { "name": "chart.apis.google.com", "include_subdomains": true, "pins": "goog le" }, |
| 173 | 175 |
| 174 // Other Google-related domains that must use an acceptable certificate | 176 // Other Google-related domains that must use an acceptable certificate |
| 175 // iff using SSL. | 177 // iff using SSL. |
| 176 { "name": "ytimg.com", "include_subdomains": true, "pins": "google" }, | 178 { "name": "ytimg.com", "include_subdomains": true, "pins": "google" }, |
| 177 { "name": "googleusercontent.com", "include_subdomains": true, "pins": "goog le" }, | 179 { "name": "googleusercontent.com", "include_subdomains": true, "pins": "goog le" }, |
| (...skipping 106 matching lines...) Expand 10 before | Expand all | Expand 10 after Loading... | |
| 284 | 286 |
| 285 // Entries that are only valid if the client supports SNI. | 287 // Entries that are only valid if the client supports SNI. |
| 286 { "name": "gmail.com", "mode": "force-https", "pins": "google", "snionly": t rue }, | 288 { "name": "gmail.com", "mode": "force-https", "pins": "google", "snionly": t rue }, |
| 287 { "name": "googlemail.com", "mode": "force-https", "pins": "google", "snionl y": true }, | 289 { "name": "googlemail.com", "mode": "force-https", "pins": "google", "snionl y": true }, |
| 288 { "name": "www.gmail.com", "mode": "force-https", "pins": "google", "snionly ": true }, | 290 { "name": "www.gmail.com", "mode": "force-https", "pins": "google", "snionly ": true }, |
| 289 { "name": "www.googlemail.com", "mode": "force-https", "pins": "google", "sn ionly": true }, | 291 { "name": "www.googlemail.com", "mode": "force-https", "pins": "google", "sn ionly": true }, |
| 290 { "name": "google-analytics.com", "include_subdomains": true, "pins": "googl e", "snionly": true }, | 292 { "name": "google-analytics.com", "include_subdomains": true, "pins": "googl e", "snionly": true }, |
| 291 { "name": "googlegroups.com", "include_subdomains": true, "pins": "google", "snionly": true } | 293 { "name": "googlegroups.com", "include_subdomains": true, "pins": "google", "snionly": true } |
| 292 ] | 294 ] |
| 293 } | 295 } |
| OLD | NEW |
