tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

media-src-7_1_2.sub.html (2059B)

      1 <!DOCTYPE HTML>
      2 <html>
      3 <head>
      4    <title>Video element src attribute must match src list - negative test</title>
      5    <meta http-equiv="Content-Security-Policy" content="script-src * 'unsafe-inline'; media-src 'self';">
      6    <script src='/resources/testharness.js'></script>
      7    <script src='/resources/testharnessreport.js'></script>
      8 </head>
      9 <body>
     10    <h1>Video element src attribute must match src list - negative test</h1>
     11    <div id='log'></div>
     12 
     13  <script>
     14      var src_test = async_test("Disallowed async video src");
     15      var source_test = async_test("Disallowed async video source element");
     16      var t_spv = async_test("Test that securitypolicyviolation events are fired");
     17      var test_count = 2;
     18      window.addEventListener("securitypolicyviolation", t_spv.step_func(function(e) {
     19          assert_equals(e.violatedDirective, "media-src");
     20          assert_equals(e.blockedURI, mediaURL);
     21          if (--test_count <= 0) {
     22              t_spv.done();
     23          }
     24      }));
     25 
     26      // we assume tests are run from 'hostname' and 'www.hostname' or 'www2.hostname' is a valid alias
     27      var mediaURL = location.protocol + "//{{domains[www2]}}:{{ports[http][0]}}/media/A4.webm";
     28 
     29    function media_loaded(t) {
     30      t.step( function () {
     31          assert_unreached("Media error handler should be triggered for non-allowed domain.");
     32      });
     33      t.done();
     34    }
     35 
     36    function media_error_handler(t) {
     37      t.done();
     38    }
     39  </script>
     40 
     41    <video id="videoObject" width="320" height="240" controls
     42           onloadeddata="media_loaded(source_test)">
     43        <source id="videoSourceObject"
     44                type="video/webm"
     45                onerror="media_error_handler(source_test)">
     46    </video>
     47    <video id="videoObject2" width="320" height="240" controls
     48           onerror="media_error_handler(src_test)"
     49           onloadeddata="media_loaded(src_test)">
     50 
     51    <script>
     52        document.getElementById("videoSourceObject").src = mediaURL;
     53        document.getElementById("videoObject2").src = mediaURL;
     54    </script>
     55 
     56 </body>
     57 </html>