iframe-top-navigation-no-upgrade-2.sub.html (789B)
1 <html> 2 <head> 3 <title>Upgrade Insecure Requests: top-frame navigation inside iframe (no upgrade expected)</title> 4 </head> 5 <body> 6 <!-- 7 This is a bit of a hack. UPGRADE doesn't upgrade the port number. So if the 8 url is upgraded, the url becomes invalid (https over the http port). The 9 expected behavior is that the url is not upgraded and the page loads. 10 --> 11 <iframe 12 sandbox="allow-scripts allow-top-navigation" 13 src="https://{{domains[www]}}:{{ports[https][0]}}/upgrade-insecure-requests/link-upgrade/resources/navigate-top-frame-upgrade.sub.html?url=http://{{host}}:{{ports[http][0]}}/upgrade-insecure-requests/link-upgrade/resources/post-message-to-opener.sub.html%3Fmessage=iframe-top-navigation-no-upgrade-2" 14 ></iframe> 15 </body> 16 </html>