1CONSOLE MESSAGE: Unsafe JavaScript attempt to initiate navigation for frame with URL 'script>'. The frame attempting navigation of the top-level window is sandboxed, but the 'allow-top-navigation' flag is not set.
1CONSOLE MESSAGE: Sandbox access violation: Blocked a frame at "null" from accessing a frame at "". The frame requesting access is sandboxed and lacks the "allow-same-origin" flag.
2
2This test verifies that a sandboxed IFrame cannot access the history object of the top-level frame. It passes if a console error is present, noting that the inner frame cannot access the outer.
3ALERT: PASS
4This test verifies that a sandboxed IFrame cannot navigate the top-level frame using the history API.
Issue 14198015: Deny cross-origin access to 'window.history'.
(Closed)
Created 7 years, 7 months ago by Mike West
Modified 7 years, 7 months ago
Reviewers: abarth-chromium, eseidel
Base URL: svn://svn.chromium.org/blink/trunk
Comments: 6
Chromium Code Reviews
Issue 14198015:
Deny cross-origin access to 'window.history'. (Closed)
Base URL: svn://svn.chromium.org/blink/trunk