LayoutTests/http/tests/security/javascriptURL/xss-DENIED-to-javascript-url-in-foreign-domain-subframe-expected.txt - WebKit - Git at Google

 CONSOLE MESSAGE: line 41: SecurityError: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a cross-origin frame. Protocols, domains, and ports must match.
 The scenario for this test is that you have an iframe with content from a foreign domain. In that foreign content is an iframe which loads a javascript: URL. This tests that this main document does not have access to that javascript: URL loaded iframe.


 PASS: Cross frame access to a javascript: URL embed in a frame on a foreign domain denied!


 --------
 Frame: '<!--framePath //<!--frame0-->-->'
 --------
 Inner iframe on a foreign domain.


 --------
 Frame: 'aFrame'
 --------
 PASS: Cross frame access from a frame on a foreign domain denied!

 Inner-inner iframe. This iframe (which is javascript: URL and whose parent is on a foreign domain) is the frame that the main frame is trying to access. It should not have access to it.
	CONSOLE MESSAGE: line 41: SecurityError: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a cross-origin frame. Protocols, domains, and ports must match.
	The scenario for this test is that you have an iframe with content from a foreign domain. In that foreign content is an iframe which loads a javascript: URL. This tests that this main document does not have access to that javascript: URL loaded iframe.


	PASS: Cross frame access to a javascript: URL embed in a frame on a foreign domain denied!


	--------
	Frame: '<!--framePath //<!--frame0-->-->'
	--------
	Inner iframe on a foreign domain.



	--------
	Frame: 'aFrame'
	--------
	PASS: Cross frame access from a frame on a foreign domain denied!

	Inner-inner iframe. This iframe (which is javascript: URL and whose parent is on a foreign domain) is the frame that the main frame is trying to access. It should not have access to it.