mirror of
https://github.com/mozilla/gecko-dev.git
synced 2024-10-22 01:35:35 +00:00
b633427366
Differential Revision: https://phabricator.services.mozilla.com/D27654 --HG-- extra : moz-landing-system : lando
36 lines
1.2 KiB
C++
36 lines
1.2 KiB
C++
/* -*- Mode: C++; tab-width: 8; indent-tabs-mode: nil; c-basic-offset: 2 -*- */
|
|
/* vim: set ts=8 sts=2 et sw=2 tw=80: */
|
|
/* This Source Code Form is subject to the terms of the Mozilla Public
|
|
* License, v. 2.0. If a copy of the MPL was not distributed with this
|
|
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
|
|
|
|
#ifndef mozilla_dom_FramingChecker_h
|
|
#define mozilla_dom_FramingChecker_h
|
|
|
|
class nsIDocShell;
|
|
class nsIChannel;
|
|
class nsIHttpChannel;
|
|
class nsIDocShellTreeItem;
|
|
class nsIURI;
|
|
class nsIContentSecurityPolicy;
|
|
|
|
class FramingChecker {
|
|
public:
|
|
// Determine if X-Frame-Options allows content to be framed
|
|
// as a subdocument
|
|
static bool CheckFrameOptions(nsIChannel* aChannel, nsIDocShell* aDocShell,
|
|
nsIContentSecurityPolicy* aCSP);
|
|
|
|
protected:
|
|
enum XFOHeader { eDENY, eSAMEORIGIN, eALLOWFROM };
|
|
|
|
static bool CheckOneFrameOptionsPolicy(nsIHttpChannel* aHttpChannel,
|
|
const nsAString& aPolicy,
|
|
nsIDocShell* aDocShell);
|
|
|
|
static void ReportXFOViolation(nsIDocShellTreeItem* aTopDocShellItem,
|
|
nsIURI* aThisURI, XFOHeader aHeader);
|
|
};
|
|
|
|
#endif /* mozilla_dom_FramingChecker_h */
|