tor-browser

test_XHR_redirects.js (8106B)

---

// This file tests whether XmlHttpRequests correctly handle redirects,
// including rewriting POSTs to GETs (on 301/302/303), as well as
// prompting for redirects of other unsafe methods (such as PUTs, DELETEs,
// etc--see HttpBaseChannel::IsSafeMethod).  Since no prompting is possible
// in xpcshell, we get an error for prompts, and the request fails.
"use strict";

const { HttpServer } = ChromeUtils.importESModule(
 "resource://testing-common/httpd.sys.mjs"
);
const { Preferences } = ChromeUtils.importESModule(
 "resource://gre/modules/Preferences.sys.mjs"
);

var sSame;
var sOther;
var sRedirectPromptPref;

const BUGID = "676059";
const OTHERBUGID = "696849";

ChromeUtils.defineLazyGetter(this, "pSame", function () {
 return sSame.identity.primaryPort;
});
ChromeUtils.defineLazyGetter(this, "pOther", function () {
 return sOther.identity.primaryPort;
});

function createXHR(async, method, path) {
 var xhr = new XMLHttpRequest();
 xhr.open(method, "http://localhost:" + pSame + path, async);
 return xhr;
}

function checkResults(xhr, method, status, unsafe) {
 if (unsafe) {
   if (sRedirectPromptPref) {
     // The method is null if we prompt for unsafe redirects
     method = null;
   } else {
     // The status code is 200 when we don't prompt for unsafe redirects
     status = 200;
   }
 }

 if (xhr.readyState != 4) {
   return false;
 }
 Assert.equal(xhr.status, status);

 if (status == 200) {
   // if followed then check for echoed method name
   Assert.equal(xhr.getResponseHeader("X-Received-Method"), method);
 }

 return true;
}

function run_test() {
 // start servers
 sSame = new HttpServer();

 // same-origin redirects
 sSame.registerPathHandler(
   "/bug" + BUGID + "-redirect301",
   bug676059redirect301
 );
 sSame.registerPathHandler(
   "/bug" + BUGID + "-redirect302",
   bug676059redirect302
 );
 sSame.registerPathHandler(
   "/bug" + BUGID + "-redirect303",
   bug676059redirect303
 );
 sSame.registerPathHandler(
   "/bug" + BUGID + "-redirect307",
   bug676059redirect307
 );
 sSame.registerPathHandler(
   "/bug" + BUGID + "-redirect308",
   bug676059redirect308
 );

 // cross-origin redirects
 sSame.registerPathHandler(
   "/bug" + OTHERBUGID + "-redirect301",
   bug696849redirect301
 );
 sSame.registerPathHandler(
   "/bug" + OTHERBUGID + "-redirect302",
   bug696849redirect302
 );
 sSame.registerPathHandler(
   "/bug" + OTHERBUGID + "-redirect303",
   bug696849redirect303
 );
 sSame.registerPathHandler(
   "/bug" + OTHERBUGID + "-redirect307",
   bug696849redirect307
 );
 sSame.registerPathHandler(
   "/bug" + OTHERBUGID + "-redirect308",
   bug696849redirect308
 );

 // same-origin target
 sSame.registerPathHandler("/bug" + BUGID + "-target", echoMethod);
 sSame.start(-1);

 // cross-origin target
 sOther = new HttpServer();
 sOther.registerPathHandler("/bug" + OTHERBUGID + "-target", echoMethod);
 sOther.start(-1);

 // format: redirectType, methodToSend, redirectedMethod, finalStatus
 //   redirectType sets the URI the initial request goes to
 //   methodToSend is the HTTP method to send
 //   redirectedMethod is the method to use for the redirect, if any
 //   finalStatus is 200 when the redirect takes place, redirectType otherwise

 // Note that unsafe methods should not follow the redirect automatically
 // Of the methods below, DELETE, POST and PUT are unsafe

 sRedirectPromptPref = Preferences.get("network.http.prompt-temp-redirect");
 // Following Bug 677754 we don't prompt for unsafe redirects

 // same-origin variant
 var tests = [
   // 301: rewrite just POST
   [301, "DELETE", "DELETE", 301, true],
   [301, "GET", "GET", 200, false],
   [301, "HEAD", "HEAD", 200, false],
   [301, "POST", "GET", 200, false],
   [301, "PUT", "PUT", 301, true],
   [301, "PROPFIND", "PROPFIND", 200, false],
   // 302: see 301
   [302, "DELETE", "DELETE", 302, true],
   [302, "GET", "GET", 200, false],
   [302, "HEAD", "HEAD", 200, false],
   [302, "POST", "GET", 200, false],
   [302, "PUT", "PUT", 302, true],
   [302, "PROPFIND", "PROPFIND", 200, false],
   // 303: rewrite to GET except HEAD
   [303, "DELETE", "GET", 200, false],
   [303, "GET", "GET", 200, false],
   [303, "HEAD", "HEAD", 200, false],
   [303, "POST", "GET", 200, false],
   [303, "PUT", "GET", 200, false],
   [303, "PROPFIND", "GET", 200, false],
   // 307: never rewrite
   [307, "DELETE", "DELETE", 307, true],
   [307, "GET", "GET", 200, false],
   [307, "HEAD", "HEAD", 200, false],
   [307, "POST", "POST", 307, true],
   [307, "PUT", "PUT", 307, true],
   [307, "PROPFIND", "PROPFIND", 200, false],
   // 308: never rewrite
   [308, "DELETE", "DELETE", 308, true],
   [308, "GET", "GET", 200, false],
   [308, "HEAD", "HEAD", 200, false],
   [308, "POST", "POST", 308, true],
   [308, "PUT", "PUT", 308, true],
   [308, "PROPFIND", "PROPFIND", 200, false],
 ];

 // cross-origin variant
 var othertests = tests; // for now these have identical results

 var xhr;

 for (let i = 0; i < tests.length; ++i) {
   dump("Testing " + tests[i] + "\n");
   xhr = createXHR(
     false,
     tests[i][1],
     "/bug" + BUGID + "-redirect" + tests[i][0]
   );
   xhr.send(null);
   checkResults(xhr, tests[i][2], tests[i][3], tests[i][4]);
 }

 for (let i = 0; i < othertests.length; ++i) {
   dump("Testing " + othertests[i] + " (cross-origin)\n");
   xhr = createXHR(
     false,
     othertests[i][1],
     "/bug" + OTHERBUGID + "-redirect" + othertests[i][0]
   );
   xhr.send(null);
   checkResults(xhr, othertests[i][2], tests[i][3], tests[i][4]);
 }

 sSame.stop(do_test_finished);
 sOther.stop(do_test_finished);
}

function redirect(metadata, response, status, port, bugid) {
 // set a proper reason string to avoid confusion when looking at the
 // HTTP messages
 var reason;
 if (status == 301) {
   reason = "Moved Permanently";
 } else if (status == 302) {
   reason = "Found";
 } else if (status == 303) {
   reason = "See Other";
 } else if (status == 307) {
   reason = "Temporary Redirect";
 } else if (status == 308) {
   reason = "Permanent Redirect";
 }

 response.setStatusLine(metadata.httpVersion, status, reason);
 response.setHeader(
   "Location",
   "http://localhost:" + port + "/bug" + bugid + "-target"
 );
}

// PATH HANDLER FOR /bug676059-redirect301
function bug676059redirect301(metadata, response) {
 redirect(metadata, response, 301, pSame, BUGID);
}

// PATH HANDLER FOR /bug696849-redirect301
function bug696849redirect301(metadata, response) {
 redirect(metadata, response, 301, pOther, OTHERBUGID);
}

// PATH HANDLER FOR /bug676059-redirect302
function bug676059redirect302(metadata, response) {
 redirect(metadata, response, 302, pSame, BUGID);
}

// PATH HANDLER FOR /bug696849-redirect302
function bug696849redirect302(metadata, response) {
 redirect(metadata, response, 302, pOther, OTHERBUGID);
}

// PATH HANDLER FOR /bug676059-redirect303
function bug676059redirect303(metadata, response) {
 redirect(metadata, response, 303, pSame, BUGID);
}

// PATH HANDLER FOR /bug696849-redirect303
function bug696849redirect303(metadata, response) {
 redirect(metadata, response, 303, pOther, OTHERBUGID);
}

// PATH HANDLER FOR /bug676059-redirect307
function bug676059redirect307(metadata, response) {
 redirect(metadata, response, 307, pSame, BUGID);
}

// PATH HANDLER FOR /bug676059-redirect308
function bug676059redirect308(metadata, response) {
 redirect(metadata, response, 308, pSame, BUGID);
}

// PATH HANDLER FOR /bug696849-redirect307
function bug696849redirect307(metadata, response) {
 redirect(metadata, response, 307, pOther, OTHERBUGID);
}

// PATH HANDLER FOR /bug696849-redirect308
function bug696849redirect308(metadata, response) {
 redirect(metadata, response, 308, pOther, OTHERBUGID);
}

// Echo the request method in "X-Received-Method" header field
function echoMethod(metadata, response) {
 response.setStatusLine(metadata.httpVersion, 200, "OK");
 response.setHeader("X-Received-Method", metadata.method);
}