Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(75)

Side by Side Diff: third_party/WebKit/LayoutTests/http/tests/security/XFrameOptions/x-frame-options-multiple-headers-sameorigin-deny-expected.txt

Issue 1617043002: Introduce AncestorThrottle, which will process 'X-Frame-Options' headers. (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@block-response
Patch Set: DCHECK. Created 4 years, 7 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
OLDNEW
1 CONSOLE ERROR: Refused to display 'http://localhost:8000/security/XFrameOptions/ resources/x-frame-options-multiple-headers-sameorigin.cgi' in a frame because it set 'X-Frame-Options' to 'SAMEORIGIN, SAMEORIGIN'. 1 CONSOLE ERROR: Refused to display 'http://localhost:8000/security/XFrameOptions/ resources/x-frame-options-multiple-headers-sameorigin.cgi' in a frame because it set 'X-Frame-Options' to 'sameorigin'.
2 CONSOLE MESSAGE: line 16: PASS: Access to contentWindow.location.href threw an e xception. 2 CONSOLE MESSAGE: line 16: PASS: Access to contentWindow.location.href threw an e xception.
3 The frame below should not load, proving that 'sameorigin, sameorigin' === 'same origin'. 3 The frame below should not load, proving that 'sameorigin, sameorigin' === 'same origin'.
4 4
5 5
6 6
7 -------- 7 --------
8 Frame: '<!--framePath //<!--frame0-->-->' 8 Frame: '<!--framePath //<!--frame0-->-->'
9 -------- 9 --------
10 10
OLDNEW

Powered by Google App Engine
This is Rietveld 408576698