michael@0: // Server side js file for bug 910139, see file test_CSP_bug910139.html for details. michael@0: michael@0: Components.utils.import("resource://gre/modules/NetUtil.jsm"); michael@0: michael@0: function loadResponseFromFile(path) { michael@0: var testHTMLFile = michael@0: Components.classes["@mozilla.org/file/directory_service;1"]. michael@0: getService(Components.interfaces.nsIProperties). michael@0: get("CurWorkD", Components.interfaces.nsILocalFile); michael@0: var dirs = path.split("/"); michael@0: for (var i = 0; i < dirs.length; i++) { michael@0: testHTMLFile.append(dirs[i]); michael@0: } michael@0: var testHTMLFileStream = michael@0: Components.classes["@mozilla.org/network/file-input-stream;1"]. michael@0: createInstance(Components.interfaces.nsIFileInputStream); michael@0: testHTMLFileStream.init(testHTMLFile, -1, 0, 0); michael@0: var testHTML = NetUtil.readInputStreamToString(testHTMLFileStream, testHTMLFileStream.available()); michael@0: return testHTML; michael@0: } michael@0: michael@0: var policies = [ michael@0: "default-src 'self'; script-src 'self'", // CSP for checkAllowed michael@0: "default-src 'self'; script-src *.example.com" // CSP for checkBlocked michael@0: ] michael@0: michael@0: function getPolicy() { michael@0: var index; michael@0: // setState only accepts strings as arguments michael@0: if (!getState("counter")) { michael@0: index = 0; michael@0: setState("counter", index.toString()); michael@0: } michael@0: else { michael@0: index = parseInt(getState("counter")); michael@0: ++index; michael@0: setState("counter", index.toString()); michael@0: } michael@0: return policies[index]; michael@0: } michael@0: michael@0: function handleRequest(request, response) michael@0: { michael@0: // avoid confusing cache behaviors michael@0: response.setHeader("Cache-Control", "no-cache", false); michael@0: michael@0: // set the required CSP michael@0: response.setHeader("Content-Security-Policy", getPolicy(), false); michael@0: michael@0: // return the requested XML file. michael@0: response.write(loadResponseFromFile("tests/content/base/test/csp/file_CSP_bug910139.xml")); michael@0: }