diff options
Diffstat (limited to 'src/3rdparty/webkit/WebCore/loader/CrossOriginAccessControl.h')
-rw-r--r-- | src/3rdparty/webkit/WebCore/loader/CrossOriginAccessControl.h | 41 |
1 files changed, 41 insertions, 0 deletions
diff --git a/src/3rdparty/webkit/WebCore/loader/CrossOriginAccessControl.h b/src/3rdparty/webkit/WebCore/loader/CrossOriginAccessControl.h new file mode 100644 index 0000000..267646f --- /dev/null +++ b/src/3rdparty/webkit/WebCore/loader/CrossOriginAccessControl.h @@ -0,0 +1,41 @@ +/* + * Copyright (C) 2008 Apple Inc. All Rights Reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in the + * documentation and/or other materials provided with the distribution. + * + * THIS SOFTWARE IS PROVIDED BY APPLE COMPUTER, INC. ``AS IS'' AND ANY + * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR + * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL APPLE COMPUTER, INC. OR + * CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, + * EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, + * PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR + * PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY + * OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT + * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE + * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + * + */ + +namespace WebCore { + + class HTTPHeaderMap; + class ResourceResponse; + class SecurityOrigin; + class String; + + bool isSimpleCrossOriginAccessRequest(const String& method, const HTTPHeaderMap&); + bool isOnAccessControlSimpleRequestMethodWhitelist(const String&); + bool isOnAccessControlSimpleRequestHeaderWhitelist(const String& name, const String& value); + bool isOnAccessControlResponseHeaderWhitelist(const String&); + + bool passesAccessControlCheck(const ResourceResponse&, bool includeCredentials, SecurityOrigin*); + +} // namespace WebCore |