blob: 9435b3f6330c458baeeb94eb1ff59cb0fc6cbcc7 [file] [log] [blame]
<!DOCTYPE html>
<html>
<head>
<script src="/js-test-resources/js-test.js"></script>
<script src="/resourceLoadStatistics/resources/util.js"></script>
<script>
description("Tests that a cross-origin window from a prevalent domain without user interaction is denied storage access under its opener.");
jsTestIsAsync = true;
window.addEventListener("message", receiveMessage, false);
function finishTest() {
setEnableFeature(false, finishJSTest);
}
function openIframe(url, onLoadHandler) {
const element = document.createElement("iframe");
element.src = url;
if (onLoadHandler) {
element.onload = onLoadHandler;
}
document.body.appendChild(element);
}
function receiveMessage(event) {
if (event.origin === "http://localhost:8000") {
if (event.data.indexOf("PASS") !== -1)
testPassed(event.data.replace("PASS ", ""));
else
testFailed(event.data);
} else
testFailed("Received a message from an unexpected origin: " + event.origin);
newWin.close();
openIframe(thirdPartyBaseUrl + subPathToGetCookies + "&message=Should not receive first-party cookie.", finishTest);
}
const thirdPartyOrigin = "http://localhost:8000";
const resourcePath = "/storageAccess/resources";
const thirdPartyBaseUrl = thirdPartyOrigin + resourcePath;
const firstPartyCookieName = "firstPartyCookie";
const subPathToGetCookies = "/get-cookies.py?name1=" + firstPartyCookieName;
let newWin;
setEnableFeature(true, function() {
testRunner.setStatisticsPrevalentResource(thirdPartyOrigin, true, function() {
if (!testRunner.isStatisticsPrevalentResource(thirdPartyOrigin))
testFailed("Host did not get set as prevalent resource.");
if (testRunner.isStatisticsHasHadUserInteraction(thirdPartyOrigin))
testFailed("Host logged for user interaction.");
testRunner.dumpChildFramesAsText();
testRunner.statisticsUpdateCookieBlocking(function () {
newWin = window.open(thirdPartyOrigin + "/storageAccess/resources/set-cookie-and-report-back.html", "testWindow");
});
});
});
</script>
</head>
<body>
</body>
</html>