tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

javascript.https.html (895B)

      1 <!doctype html>
      2 <meta charset=utf-8>
      3 <script src="/resources/testharness.js"></script>
      4 <script src="/resources/testharnessreport.js"></script>
      5 <script src="/common/get-host-info.sub.js"></script>
      6 <script src="resources/script-factory.js"></script>
      7 <div id=log></div>
      8 <script>
      9 async_test(t => {
     10  window.addEventListener("message", t.step_func_done(({ data }) => {
     11    assert_equals(data.id, "");
     12    assert_equals(data.origin, window.origin);
     13    assert_true(data.sameOriginNoCORPSuccess);
     14    assert_true(data.crossOriginNoCORPFailure, "Cross-origin without CORP did not fail");
     15  }));
     16  const frame = document.createElement("iframe");
     17  t.add_cleanup(() => frame.remove());
     18  frame.src = `javascript:${encodeURIComponent(createScript(window.origin, get_host_info().HTTPS_NOTSAMESITE_ORIGIN))}`;
     19  document.body.append(frame);
     20 }, "Cross-Origin-Embedder-Policy and javascript: URLs");
     21 </script>