tor-browser

The Tor Browser
git clone https://git.dasho.dev/tor-browser.git
Log | Files | Refs | README | LICENSE

sxg-hsts.tentative.html (858B)

      1 <!DOCTYPE html>
      2 <title>Loading SignedHTTPExchange with strict-transport-security must fail</title>
      3 <script src="/resources/testharness.js"></script>
      4 <script src="/resources/testharnessreport.js"></script>
      5 <script src="/common/get-host-info.sub.js"></script>
      6 <script src="./resources/sxg-util.js"></script>
      7 <body>
      8 <script>
      9 promise_test(async (t) => {
     10  const sxgUrl = get_host_info().HTTPS_ORIGIN +
     11                 '/signed-exchange/resources/sxg/sxg-hsts.sxg';
     12  const message = await openSXGInIframeAndWaitForMessage(t, sxgUrl);
     13  const innerURL = innerURLOrigin() +
     14                   '/signed-exchange/resources/inner-url.html';
     15  assert_equals(message.location, innerURL);
     16  assert_true(message.is_fallback);
     17 }, 'Loading SignedHTTPExchange with an uncached header ' +
     18   'Strict-Transport-Security must fail and fallback redirect.');
     19 
     20 </script>
     21 </body>