/* * Copyright (c) 2025, Luke Wilde * * SPDX-License-Identifier: BSD-2-Clause */ #pragma once #include #include #include namespace Web::ContentSecurityPolicy { void report_content_security_policy_violations_for_request(JS::Realm&, GC::Ref); Directives::Directive::Result should_request_be_blocked_by_content_security_policy(JS::Realm&, GC::Ref); Directives::Directive::Result should_request_be_blocked_by_integrity_policy(GC::Ref); Directives::Directive::Result should_response_to_request_be_blocked_by_content_security_policy(JS::Realm&, GC::Ref, GC::Ref); Directives::Directive::Result should_navigation_request_of_type_be_blocked_by_content_security_policy(GC::Ref navigation_request, Directives::Directive::NavigationType navigation_type); Directives::Directive::Result should_navigation_response_to_navigation_request_of_type_in_target_be_blocked_by_content_security_policy( GC::Ptr navigation_request, GC::Ref navigation_response, GC::Ref response_csp_list, Directives::Directive::NavigationType navigation_type, GC::Ref target); Directives::Directive::Result should_elements_inline_type_behavior_be_blocked_by_content_security_policy(JS::Realm&, GC::Ref element, Directives::Directive::InlineType type, String const& source); JS::ThrowCompletionOr ensure_csp_does_not_block_string_compilation(JS::Realm& realm, ReadonlySpan parameter_strings, StringView body_string, StringView code_string, JS::CompilationType compilation_type, ReadonlySpan parameter_args, JS::Value body_arg); JS::ThrowCompletionOr ensure_csp_does_not_block_wasm_byte_compilation(JS::Realm&); [[nodiscard]] Directives::Directive::Result is_base_allowed_for_document(JS::Realm&, URL::URL const& base, GC::Ref document); }