The Tor Browser: content/base/test/csp/file_CSP_frameancestors_main.js@b8a032363ba2 (annotated)

content/base/test/csp/file_CSP_frameancestors_main.js@b8a032363ba2 (annotated)

content/base/test/csp/file_CSP_frameancestors_main.js

Thu, 22 Jan 2015 13:21:57 +0100

author: Michael Schloh von Bennewitz <michael@schloh.com>
date: Thu, 22 Jan 2015 13:21:57 +0100
branch: TOR_BUG_9701
changeset 15: b8a032363ba2
permissions: -rw-r--r--

Incorporate requested changes from Mozilla in review:
https://bugzilla.mozilla.org/show_bug.cgi?id=1123480#c6

 // Script to populate the test frames in the frame ancestors mochitest.
 //
 function setupFrames() {
   var $ = function(v) { return document.getElementById(v); }
   var base = {
         self: '/tests/content/base/test/csp/file_CSP_frameancestors.sjs',
         a: 'http://mochi.test:8888/tests/content/base/test/csp/file_CSP_frameancestors.sjs',
         b: 'http://example.com/tests/content/base/test/csp/file_CSP_frameancestors.sjs'
   };
   var host = { a: 'http://mochi.test:8888', b: 'http://example.com:80' };
   var innerframeuri = null;
   var elt = null;
   elt = $('aa_allow');
   elt.src = base.a + "?testid=aa_allow&internalframe=aa_a&csp=" +
             escape("allow 'none'; frame-ancestors " + host.a + "; script-src 'self'");
   elt = $('aa_block');
   elt.src = base.a + "?testid=aa_block&internalframe=aa_b&csp=" +
             escape("allow 'none'; frame-ancestors 'none'; script-src 'self'");
   elt = $('ab_allow');
   elt.src = base.b + "?testid=ab_allow&internalframe=ab_a&csp=" +
             escape("allow 'none'; frame-ancestors " + host.a + "; script-src 'self'");
   elt = $('ab_block');
   elt.src = base.b + "?testid=ab_block&internalframe=ab_b&csp=" +
             escape("allow 'none'; frame-ancestors 'none'; script-src 'self'");
    /* .... two-level framing */
   elt = $('aba_allow');
   innerframeuri = base.a + "?testid=aba_allow&double=1&internalframe=aba_a&csp=" +
                   escape("allow 'none'; frame-ancestors " + host.a + " " + host.b + "; script-src 'self'");
   elt.src = base.b + "?externalframe=" + escape('<iframe src="' + innerframeuri + '"></iframe>');
   elt = $('aba_block');
   innerframeuri = base.a + "?testid=aba_allow&double=1&internalframe=aba_b&csp=" +
                   escape("allow 'none'; frame-ancestors " + host.a + "; script-src 'self'");
   elt.src = base.b + "?externalframe=" + escape('<iframe src="' + innerframeuri + '"></iframe>');
   elt = $('aba2_block');
   innerframeuri = base.a + "?testid=aba_allow&double=1&internalframe=aba2_b&csp=" +
                   escape("allow 'none'; frame-ancestors " + host.b + "; script-src 'self'");
   elt.src = base.b + "?externalframe=" + escape('<iframe src="' + innerframeuri + '"></iframe>');
   elt = $('abb_allow');
   innerframeuri = base.b + "?testid=abb_allow&double=1&internalframe=abb_a&csp=" +
                   escape("allow 'none'; frame-ancestors " + host.a + " " + host.b + "; script-src 'self'");
   elt.src = base.b + "?externalframe=" + escape('<iframe src="' + innerframeuri + '"></iframe>');
   elt = $('abb_block');
   innerframeuri = base.b + "?testid=abb_allow&double=1&internalframe=abb_b&csp=" +
                   escape("allow 'none'; frame-ancestors " + host.a + "; script-src 'self'");
   elt.src = base.b + "?externalframe=" + escape('<iframe src="' + innerframeuri + '"></iframe>');
   elt = $('abb2_block');
   innerframeuri = base.b + "?testid=abb_allow&double=1&internalframe=abb2_b&csp=" +
                   escape("allow 'none'; frame-ancestors " + host.b + "; script-src 'self'");
   elt.src = base.b + "?externalframe=" + escape('<iframe src="' + innerframeuri + '"></iframe>');
 }
 window.addEventListener('load', setupFrames, false);