Add support for Upgrade request to a potentially trustworthy URL. (#34986)

* Add support for Upgrade request to a potentially trustworthy URL. Signed-off-by: Shubham Gupta <shubham13297@gmail.com> * script: Support inheritable insecure request policy in documents and workers. Signed-off-by: Josh Matthews <josh@joshmatthews.net> --------- Signed-off-by: Shubham Gupta <shubham13297@gmail.com> Signed-off-by: Josh Matthews <josh@joshmatthews.net> Co-authored-by: Shubham Gupta <shubham.gupta@chromium.org> Co-authored-by: Josh Matthews <josh@joshmatthews.net>
2025-07-22 23:03:42 +01:00 · 2025-02-05 20:49:56 +08:00 · 2025-02-05 20:49:56 +08:00 · 1e164738d8
commit 1e164738d8
parent 7b36f2beb3
57 changed files with 264 additions and 346 deletions
--- a/components/script/dom/xmlhttprequest.rs
+++ b/components/script/dom/xmlhttprequest.rs
@ -692,6 +692,7 @@ impl XMLHttpRequestMethods<crate::DomTypeHolder> for XMLHttpRequest {
        .use_url_credentials(use_url_credentials)
        .origin(self.global().origin().immutable().clone())
        .referrer_policy(self.referrer_policy)
+        .insecure_requests_policy(self.global().insecure_requests_policy())
        .pipeline_id(Some(self.global().pipeline_id()));

        // step 4 (second half)
@ -1508,6 +1509,7 @@ impl XMLHttpRequest {
            None,
            Default::default(),
            false,
+            Some(doc.insecure_requests_policy()),
            can_gc,
        )
    }