1/* 2 * Copyright (C) 2012 Google Inc. All rights reserved. 3 * 4 * Redistribution and use in source and binary forms, with or without 5 * modification, are permitted provided that the following conditions 6 * are met: 7 * 1. Redistributions of source code must retain the above copyright 8 * notice, this list of conditions and the following disclaimer. 9 * 2. Redistributions in binary form must reproduce the above copyright 10 * notice, this list of conditions and the following disclaimer in the 11 * documentation and/or other materials provided with the distribution. 12 * 13 * THIS SOFTWARE IS PROVIDED BY APPLE INC. AND ITS CONTRIBUTORS ``AS IS'' AND ANY 14 * EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED 15 * WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE 16 * DISCLAIMED. IN NO EVENT SHALL APPLE INC. OR ITS CONTRIBUTORS BE LIABLE FOR ANY 17 * DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES 18 * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 19 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON 20 * ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT 21 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS 22 * SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. 23 */ 24 25[ 26 Conditional=CSP_NEXT, 27 InterfaceName=SecurityPolicy 28] interface DOMSecurityPolicy { 29 readonly attribute boolean allowsEval; 30 readonly attribute boolean allowsInlineScript; 31 readonly attribute boolean allowsInlineStyle; 32 readonly attribute boolean isActive; 33 34 readonly attribute DOMStringList reportURIs; 35 36 boolean allowsConnectionTo(DOMString url); 37 boolean allowsFontFrom(DOMString url); 38 boolean allowsFormAction(DOMString url); 39 boolean allowsFrameFrom(DOMString url); 40 boolean allowsImageFrom(DOMString url); 41 boolean allowsMediaFrom(DOMString url); 42 boolean allowsObjectFrom(DOMString url); 43 boolean allowsPluginType(DOMString type); 44 boolean allowsScriptFrom(DOMString url); 45 boolean allowsStyleFrom(DOMString url); 46}; 47