-// Copyright (c) 2014 Marshall A. Greenblatt. All rights reserved.
+// Copyright (c) 2017 Marshall A. Greenblatt. All rights reserved.
//
// Redistribution and use in source and binary forms, with or without
// modification, are permitted provided that the following conditions are
///
// Base structure.
///
- cef_base_t base;
+ cef_base_scoped_t base;
///
// Register a custom scheme. This function should not be called for the built-
// is. For example, "scheme:///some%20text" will remain the same. Non-standard
// scheme URLs cannot be used as a target for form submission.
//
- // If |is_local| is true (1) the scheme will be treated as local (i.e., with
- // the same security rules as those applied to "file" URLs). Normal pages
- // cannot link to or access local URLs. Also, by default, local URLs can only
- // perform XMLHttpRequest calls to the same URL (origin + path) that
- // originated the request. To allow XMLHttpRequest calls from a local URL to
- // other URLs with the same origin set the
- // CefSettings.file_access_from_file_urls_allowed value to true (1). To allow
- // XMLHttpRequest calls from a local URL to all origins set the
- // CefSettings.universal_access_from_file_urls_allowed value to true (1).
+ // If |is_local| is true (1) the scheme will be treated with the same security
+ // rules as those applied to "file" URLs. Normal pages cannot link to or
+ // access local URLs. Also, by default, local URLs can only perform
+ // XMLHttpRequest calls to the same URL (origin + path) that originated the
+ // request. To allow XMLHttpRequest calls from a local URL to other URLs with
+ // the same origin set the CefSettings.file_access_from_file_urls_allowed
+ // value to true (1). To allow XMLHttpRequest calls from a local URL to all
+ // origins set the CefSettings.universal_access_from_file_urls_allowed value
+ // to true (1).
//
- // If |is_display_isolated| is true (1) the scheme will be treated as display-
- // isolated. This means that pages cannot display these URLs unless they are
- // from the same scheme. For example, pages in another origin cannot create
- // iframes or hyperlinks to URLs with this scheme.
+ // If |is_display_isolated| is true (1) the scheme can only be displayed from
+ // other content hosted with the same scheme. For example, pages in other
+ // origins cannot create iframes or hyperlinks to URLs with the scheme. For
+ // schemes that must be accessible from other schemes set this value to false
+ // (0), set |is_cors_enabled| to true (1), and use CORS "Access-Control-Allow-
+ // Origin" headers to further restrict access.
+ //
+ // If |is_secure| is true (1) the scheme will be treated with the same
+ // security rules as those applied to "https" URLs. For example, loading this
+ // scheme from other secure schemes will not trigger mixed content warnings.
+ //
+ // If |is_cors_enabled| is true (1) the scheme can be sent CORS requests. This
+ // value should be true (1) in most cases where |is_standard| is true (1).
+ //
+ // If |is_csp_bypassing| is true (1) the scheme can bypass Content-Security-
+ // Policy (CSP) checks. This value should be false (0) in most cases where
+ // |is_standard| is true (1).
//
// This function may be called on any thread. It should only be called once
// per unique |scheme_name| value. If |scheme_name| is already registered or
///
int (CEF_CALLBACK *add_custom_scheme)(struct _cef_scheme_registrar_t* self,
const cef_string_t* scheme_name, int is_standard, int is_local,
- int is_display_isolated);
+ int is_display_isolated, int is_secure, int is_cors_enabled,
+ int is_csp_bypassing);
} cef_scheme_registrar_t;
///
// Base structure.
///
- cef_base_t base;
+ cef_base_ref_counted_t base;
///
// Return a new resource handler instance to handle the request or an NULL
///
-// Register a scheme handler factory for the specified |scheme_name| and
-// optional |domain_name|. An NULL |domain_name| value for a standard scheme
-// will cause the factory to match all domain names. The |domain_name| value
-// will be ignored for non-standard schemes. If |scheme_name| is a built-in
-// scheme and no handler is returned by |factory| then the built-in scheme
-// handler factory will be called. If |scheme_name| is a custom scheme then also
-// implement the cef_app_t::on_register_custom_schemes() function in all
-// processes. This function may be called multiple times to change or remove the
-// factory that matches the specified |scheme_name| and optional |domain_name|.
-// Returns false (0) if an error occurs. This function may be called on any
-// thread in the browser process.
+// Register a scheme handler factory with the global request context. An NULL
+// |domain_name| value for a standard scheme will cause the factory to match all
+// domain names. The |domain_name| value will be ignored for non-standard
+// schemes. If |scheme_name| is a built-in scheme and no handler is returned by
+// |factory| then the built-in scheme handler factory will be called. If
+// |scheme_name| is a custom scheme then you must also implement the
+// cef_app_t::on_register_custom_schemes() function in all processes. This
+// function may be called multiple times to change or remove the factory that
+// matches the specified |scheme_name| and optional |domain_name|. Returns false
+// (0) if an error occurs. This function may be called on any thread in the
+// browser process. Using this function is equivalent to calling cef_request_tCo
+// ntext::cef_request_context_get_global_context()->register_scheme_handler_fact
+// ory().
///
CEF_EXPORT int cef_register_scheme_handler_factory(
const cef_string_t* scheme_name, const cef_string_t* domain_name,
cef_scheme_handler_factory_t* factory);
///
-// Clear all registered scheme handler factories. Returns false (0) on error.
-// This function may be called on any thread in the browser process.
+// Clear all scheme handler factories registered with the global request
+// context. Returns false (0) on error. This function may be called on any
+// thread in the browser process. Using this function is equivalent to calling c
+// ef_request_tContext::cef_request_context_get_global_context()->clear_scheme_h
+// andler_factories().
///
CEF_EXPORT int cef_clear_scheme_handler_factories();
projects / casparcg / blobdiff