LibWeb/CSP: Implement the default-src directive

Author: https://github.com/Lubrsi Commit: https://github.com/LadybirdBrowser/ladybird/commit/c5748437dbf Pull-request: https://github.com/LadybirdBrowser/ladybird/pull/5503
2026-04-30 11:37:16 +02:00 · 2024-12-03 18:18:50 +00:00 · 2025-07-19 05:16:25 +00:00
parent 25425f63ba
commit c5748437db
5 changed files with 108 additions and 0 deletions
--- a/Libraries/LibWeb/ContentSecurityPolicy/Directives/DefaultSourceDirective.h
+++ b/Libraries/LibWeb/ContentSecurityPolicy/Directives/DefaultSourceDirective.h
@@ -0,0 +1,29 @@
+/*
+ * Copyright (c) 2024, Luke Wilde <luke@ladybird.org>
+ *
+ * SPDX-License-Identifier: BSD-2-Clause
+ */
+
+#pragma once
+
+#include <LibWeb/ContentSecurityPolicy/Directives/Directive.h>
+
+namespace Web::ContentSecurityPolicy::Directives {
+
+// https://w3c.github.io/webappsec-csp/#directive-default-src
+class DefaultSourceDirective final : public Directive {
+    GC_CELL(DefaultSourceDirective, Directive)
+    GC_DECLARE_ALLOCATOR(DefaultSourceDirective);
+
+public:
+    virtual ~DefaultSourceDirective() = default;
+
+    virtual Result pre_request_check(GC::Heap&, GC::Ref<Fetch::Infrastructure::Request const>, GC::Ref<Policy const>) const override;
+    virtual Result post_request_check(GC::Heap&, GC::Ref<Fetch::Infrastructure::Request const>, GC::Ref<Fetch::Infrastructure::Response const>, GC::Ref<Policy const>) const override;
+    virtual Result inline_check(GC::Heap&, GC::Ptr<DOM::Element const>, InlineType, GC::Ref<Policy const>, String const&) const override;
+
+private:
+    DefaultSourceDirective(String name, Vector<String> value);
+};
+
+}