2 * Copyright (C) 2012 Google Inc. All rights reserved.
4 * Redistribution and use in source and binary forms, with or without
5 * modification, are permitted provided that the following conditions are
8 * * Redistributions of source code must retain the above copyright
9 * notice, this list of conditions and the following disclaimer.
10 * * Redistributions in binary form must reproduce the above
11 * copyright notice, this list of conditions and the following disclaimer
12 * in the documentation and/or other materials provided with the
14 * * Neither the name of Google Inc. nor the names of its
15 * contributors may be used to endorse or promote products derived from
16 * this software without specific prior written permission.
18 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
19 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
20 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
21 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
22 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
23 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
24 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
25 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
26 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
27 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
28 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
31 #ifndef MixedContentChecker_h
32 #define MixedContentChecker_h
34 #include "wtf/text/WTFString.h"
39 class FrameLoaderClient;
43 class MixedContentChecker {
44 WTF_MAKE_NONCOPYABLE(MixedContentChecker);
46 MixedContentChecker(LocalFrame*);
48 bool canDisplayInsecureContent(SecurityOrigin* securityOrigin, const KURL& url) const
50 return canDisplayInsecureContentInternal(securityOrigin, url, MixedContentChecker::Display);
53 bool canRunInsecureContent(SecurityOrigin* securityOrigin, const KURL& url) const
55 return canRunInsecureContentInternal(securityOrigin, url, MixedContentChecker::Execution);
57 bool canConnectInsecureWebSocket(SecurityOrigin* securityOrigin, const KURL& url) const
59 return canRunInsecureContentInternal(securityOrigin, url, MixedContentChecker::WebSocket);
62 bool canSubmitToInsecureForm(SecurityOrigin*, const KURL&) const;
63 static bool isMixedContent(SecurityOrigin*, const KURL&);
66 enum MixedContentType {
73 // FIXME: This should probably have a separate client from FrameLoader.
74 FrameLoaderClient* client() const;
76 bool canDisplayInsecureContentInternal(SecurityOrigin*, const KURL&, const MixedContentType) const;
78 bool canRunInsecureContentInternal(SecurityOrigin*, const KURL&, const MixedContentType) const;
80 void logWarning(bool allowed, const KURL& i, const MixedContentType) const;
85 } // namespace WebCore
87 #endif // MixedContentChecker_h