Merge pull request #985 from atom/set-safe-schema
Add webFrame.registerUrlSchemeAsSecure API
This commit is contained in:
Cheng Zhao
commit
b83f042363
8 changed files with 49 additions and 5 deletions
2
atom.gyp
2
atom.gyp
|
|
@ -550,6 +550,8 @@
|
||||||
'vendor/brightray/vendor/download/libchromiumcontent/src/v8/include',
|
'vendor/brightray/vendor/download/libchromiumcontent/src/v8/include',
|
||||||
# The `node.h` is using `#include"ares.h"`.
|
# The `node.h` is using `#include"ares.h"`.
|
||||||
'vendor/node/deps/cares/include',
|
'vendor/node/deps/cares/include',
|
||||||
|
# The `third_party/WebKit/Source/platform/weborigin/SchemeRegistry.h` is using `platform/PlatformExport.h`.
|
||||||
|
'vendor/brightray/vendor/download/libchromiumcontent/src/third_party/WebKit/Source',
|
||||||
],
|
],
|
||||||
'direct_dependent_settings': {
|
'direct_dependent_settings': {
|
||||||
'include_dirs': [
|
'include_dirs': [
|
||||||
|
|
|
||||||
|
|
@ -87,8 +87,8 @@ void AtomBrowserClient::OverrideWebkitPrefs(
|
||||||
prefs->allow_universal_access_from_file_urls = true;
|
prefs->allow_universal_access_from_file_urls = true;
|
||||||
prefs->allow_file_access_from_file_urls = true;
|
prefs->allow_file_access_from_file_urls = true;
|
||||||
prefs->experimental_webgl_enabled = true;
|
prefs->experimental_webgl_enabled = true;
|
||||||
prefs->allow_displaying_insecure_content = true;
|
prefs->allow_displaying_insecure_content = false;
|
||||||
prefs->allow_running_insecure_content = true;
|
prefs->allow_running_insecure_content = false;
|
||||||
|
|
||||||
// Turn off web security for devtools.
|
// Turn off web security for devtools.
|
||||||
if (url.SchemeIs("chrome-devtools")) {
|
if (url.SchemeIs("chrome-devtools")) {
|
||||||
|
|
|
||||||
|
|
@ -7,6 +7,7 @@
|
||||||
|
|
||||||
// Include common headers for using node APIs.
|
// Include common headers for using node APIs.
|
||||||
|
|
||||||
|
#undef ASSERT
|
||||||
#undef CHECK
|
#undef CHECK
|
||||||
#undef CHECK_EQ
|
#undef CHECK_EQ
|
||||||
#undef CHECK_NE
|
#undef CHECK_NE
|
||||||
|
|
@ -15,6 +16,7 @@
|
||||||
#undef CHECK_LE
|
#undef CHECK_LE
|
||||||
#undef CHECK_LT
|
#undef CHECK_LT
|
||||||
#undef DISALLOW_COPY_AND_ASSIGN
|
#undef DISALLOW_COPY_AND_ASSIGN
|
||||||
|
#undef NO_RETURN
|
||||||
#undef debug_string // This is defined in OS X 10.9 SDK in AssertMacros.h.
|
#undef debug_string // This is defined in OS X 10.9 SDK in AssertMacros.h.
|
||||||
#include "vendor/node/src/env.h"
|
#include "vendor/node/src/env.h"
|
||||||
#include "vendor/node/src/env-inl.h"
|
#include "vendor/node/src/env-inl.h"
|
||||||
|
|
|
||||||
|
|
@ -4,6 +4,11 @@
|
||||||
|
|
||||||
#include "atom/renderer/api/atom_api_web_frame.h"
|
#include "atom/renderer/api/atom_api_web_frame.h"
|
||||||
|
|
||||||
|
// This defines are required by SchemeRegistry.h.
|
||||||
|
#define OS(WTF_FEATURE) (defined WTF_OS_##WTF_FEATURE && WTF_OS_##WTF_FEATURE) // NOLINT
|
||||||
|
#define USE(WTF_FEATURE) (defined WTF_USE_##WTF_FEATURE && WTF_USE_##WTF_FEATURE) // NOLINT
|
||||||
|
#define ENABLE(WTF_FEATURE) (defined ENABLE_##WTF_FEATURE && ENABLE_##WTF_FEATURE) // NOLINT
|
||||||
|
|
||||||
#include "atom/common/native_mate_converters/string16_converter.h"
|
#include "atom/common/native_mate_converters/string16_converter.h"
|
||||||
#include "atom/renderer/api/atom_api_spell_check_client.h"
|
#include "atom/renderer/api/atom_api_spell_check_client.h"
|
||||||
#include "content/public/renderer/render_frame.h"
|
#include "content/public/renderer/render_frame.h"
|
||||||
|
|
@ -12,9 +17,28 @@
|
||||||
#include "third_party/WebKit/public/web/WebDocument.h"
|
#include "third_party/WebKit/public/web/WebDocument.h"
|
||||||
#include "third_party/WebKit/public/web/WebLocalFrame.h"
|
#include "third_party/WebKit/public/web/WebLocalFrame.h"
|
||||||
#include "third_party/WebKit/public/web/WebView.h"
|
#include "third_party/WebKit/public/web/WebView.h"
|
||||||
|
#include "third_party/WebKit/Source/platform/weborigin/SchemeRegistry.h"
|
||||||
|
|
||||||
#include "atom/common/node_includes.h"
|
#include "atom/common/node_includes.h"
|
||||||
|
|
||||||
|
namespace mate {
|
||||||
|
|
||||||
|
template<>
|
||||||
|
struct Converter<WTF::String> {
|
||||||
|
static bool FromV8(v8::Isolate* isolate,
|
||||||
|
v8::Handle<v8::Value> val,
|
||||||
|
WTF::String* out) {
|
||||||
|
if (!val->IsString())
|
||||||
|
return false;
|
||||||
|
|
||||||
|
v8::String::Value s(val);
|
||||||
|
*out = WTF::String(reinterpret_cast<const base::char16*>(*s), s.length());
|
||||||
|
return true;
|
||||||
|
}
|
||||||
|
};
|
||||||
|
|
||||||
|
} // namespace mate
|
||||||
|
|
||||||
namespace atom {
|
namespace atom {
|
||||||
|
|
||||||
namespace api {
|
namespace api {
|
||||||
|
|
@ -82,7 +106,9 @@ mate::ObjectTemplateBuilder WebFrame::GetObjectTemplateBuilder(
|
||||||
.SetMethod("registerEmbedderCustomElement",
|
.SetMethod("registerEmbedderCustomElement",
|
||||||
&WebFrame::RegisterEmbedderCustomElement)
|
&WebFrame::RegisterEmbedderCustomElement)
|
||||||
.SetMethod("attachGuest", &WebFrame::AttachGuest)
|
.SetMethod("attachGuest", &WebFrame::AttachGuest)
|
||||||
.SetMethod("setSpellCheckProvider", &WebFrame::SetSpellCheckProvider);
|
.SetMethod("setSpellCheckProvider", &WebFrame::SetSpellCheckProvider)
|
||||||
|
.SetMethod("registerUrlSchemeAsSecure",
|
||||||
|
&blink::SchemeRegistry::registerURLSchemeAsSecure);
|
||||||
}
|
}
|
||||||
|
|
||||||
// static
|
// static
|
||||||
|
|
|
||||||
|
|
@ -57,3 +57,7 @@ Like `--host-rules` but these `rules` only apply to the host resolver.
|
||||||
[app]: app.md
|
[app]: app.md
|
||||||
[append-switch]: app.md#appcommandlineappendswitchswitch-value
|
[append-switch]: app.md#appcommandlineappendswitchswitch-value
|
||||||
[ready]: app.md#event-ready
|
[ready]: app.md#event-ready
|
||||||
|
|
||||||
|
## --ignore-certificate-errors
|
||||||
|
|
||||||
|
Ignore certificate related errors.
|
||||||
|
|
|
||||||
|
|
@ -53,4 +53,14 @@ require('web-frame').setSpellCheckProvider("en-US", true, {
|
||||||
});
|
});
|
||||||
```
|
```
|
||||||
|
|
||||||
|
## webFrame.registerUrlSchemeAsSecure(scheme)
|
||||||
|
|
||||||
|
* `scheme` String
|
||||||
|
|
||||||
|
Sets the `scheme` as secure scheme.
|
||||||
|
|
||||||
|
Secure schemes do not trigger mixed content warnings. For example, `https` and
|
||||||
|
`data` are secure schemes because they cannot be corrupted by active network
|
||||||
|
attackers.
|
||||||
|
|
||||||
[spellchecker]: https://github.com/atom/node-spellchecker
|
[spellchecker]: https://github.com/atom/node-spellchecker
|
||||||
|
|
|
||||||
|
|
@ -4,7 +4,7 @@ import platform
|
||||||
import sys
|
import sys
|
||||||
|
|
||||||
BASE_URL = 'http://gh-contractor-zcbenz.s3.amazonaws.com/libchromiumcontent'
|
BASE_URL = 'http://gh-contractor-zcbenz.s3.amazonaws.com/libchromiumcontent'
|
||||||
LIBCHROMIUMCONTENT_COMMIT = '55efd338101e08691560192b2be0f9c3b1b0eb72'
|
LIBCHROMIUMCONTENT_COMMIT = 'fba5addae75d944d62a8bd5f4fd23c2929405c83'
|
||||||
|
|
||||||
ARCH = {
|
ARCH = {
|
||||||
'cygwin': '32bit',
|
'cygwin': '32bit',
|
||||||
|
|
|
||||||
2
vendor/brightray
vendored
2
vendor/brightray
vendored
|
|
@ -1 +1 @@
|
||||||
Subproject commit bae4765d993cda6507829961bef5edc59028edca
|
Subproject commit 1eb88b037d99ca1ca7708f30b47f158d9c9639e6
|
||||||
Loading…
Add table
Add a link
Reference in a new issue