Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(2110)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: chrome/renderer/chrome_content_renderer_client.cc

Issue 12089059: Don't grant special privs to any http URL, ever. (Closed) Base URL: svn://svn.chromium.org/chrome/trunk/src/
Patch Set: Created 7 years, 11 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « no previous file | chrome/renderer/chrome_content_renderer_client_unittest.cc » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: chrome/renderer/chrome_content_renderer_client.cc
===================================================================
--- chrome/renderer/chrome_content_renderer_client.cc (revision 179429)
+++ chrome/renderer/chrome_content_renderer_client.cc (working copy)
@@ -673,10 +673,10 @@
// Temporarily allow these URLs to run NaCl apps. We should remove this
// code when PNaCl ships.
bool is_whitelisted_url =
- ((top_url.SchemeIs("http") || top_url.SchemeIs("https")) &&
+ top_url.SchemeIs("https") &&
(top_url.host() == "plus.google.com" ||
top_url.host() == "plus.sandbox.google.com") &&
- top_url.path().find("/games") == 0);
+ top_url.path().find("/games") == 0;
// Allow Chrome Web Store extensions, built-in extensions, extensions
// under development, invocations from whitelisted URLs, and all invocations
« no previous file with comments | « no previous file | chrome/renderer/chrome_content_renderer_client_unittest.cc » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698