Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(193)

Issues Search
    My Issues | Starred     Open | Closed | All

Unified Diff: LayoutTests/http/tests/security/script-crossorigin-redirect-credentials-expected.txt

Issue 149643003: Improve handling of CORS redirects for some resource loads. (Closed) Base URL: https://chromium.googlesource.com/chromium/blink.git@master
Patch Set: Use canRequest() when checking redirect origin; remove redundant null checks. Created 6 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
« no previous file with comments | « LayoutTests/http/tests/security/script-crossorigin-redirect-credentials.html ('k') | LayoutTests/http/tests/security/script-crossorigin-redirect-no-cors.html » ('j') | no next file with comments »
Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
Index: LayoutTests/http/tests/security/script-crossorigin-redirect-credentials-expected.txt
diff --git a/LayoutTests/http/tests/security/script-crossorigin-redirect-credentials-expected.txt b/LayoutTests/http/tests/security/script-crossorigin-redirect-credentials-expected.txt
new file mode 100644
index 0000000000000000000000000000000000000000..8415694924fc1c955455f3799c7fe0eeef707be2
--- /dev/null
+++ b/LayoutTests/http/tests/security/script-crossorigin-redirect-credentials-expected.txt
@@ -0,0 +1,22 @@
+CONSOLE ERROR: Script from origin 'http://localhost:8000' has been blocked from loading by Cross-Origin Resource Sharing policy: No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://127.0.0.1:8000' is therefore not allowed access.
+CONSOLE ERROR: Script from origin 'http://127.0.0.1:8000' has been blocked from loading by Cross-Origin Resource Sharing policy: The 'Access-Control-Allow-Origin' header has a value 'http://127.0.0.1:8000' that is not equal to the supplied origin. Origin 'null' is therefore not allowed access.
+CONSOLE ERROR: Script from origin 'http://localhost:8000' has been blocked from loading by Cross-Origin Resource Sharing policy: A wildcard '*' cannot be used in the 'Access-Control-Allow-Origin' header when the credentials flag is true. Origin 'http://127.0.0.1:8000' is therefore not allowed access.
+CONSOLE ERROR: Script from origin 'http://127.0.0.1:8000' has been blocked from loading by Cross-Origin Resource Sharing policy: A wildcard '*' cannot be used in the 'Access-Control-Allow-Origin' header when the credentials flag is true. Origin 'null' is therefore not allowed access.
+Testing the handling of CORS-enabled script fetch in the presence of 'credentialled' redirects.
+
+On success, you will see a series of "PASS" messages, followed by "TEST COMPLETE".
+
+
+PASS/FAIL descriptions are of the form, 'CORS request type': 'redirect CORS type' => 'resource'
+
+PASS: Anonymous request: credentialled => no-CORS script resource.
+PASS: Anonymous request: credentialled => anonymous CORS script resource (same origin.)
+PASS: Anonymous request: credentialled => anonymous CORS script resource (cross origin.)
+PASS: Credentialled request: credentialled => credentialled-CORS script resource (same origin.)
+PASS: Credentialled request: credentialled => credentialled-CORS script resource (cross origin.)
+PASS: Credentialled request: credentialled => anonymous-CORS script resource (same origin.)
+PASS: Credentialled request: credentialled => anonymous-CORS script resource (cross origin.)
+PASS successfullyParsed is true
+
+TEST COMPLETE
+
« no previous file with comments | « LayoutTests/http/tests/security/script-crossorigin-redirect-credentials.html ('k') | LayoutTests/http/tests/security/script-crossorigin-redirect-no-cors.html » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698