LayoutTests/http/tests/security/javascriptURL/xss-ALLOWED-from-javascript-url-sub-frame.html - Issue 187103002: id of iframe incorrectly sets window name

Side by Side Diff

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Side by Side Diff: LayoutTests/http/tests/security/javascriptURL/xss-ALLOWED-from-javascript-url-sub-frame.html

Issue 187103002: id of iframe incorrectly sets window name (Closed) Base URL: svn://svn.chromium.org/blink/trunk

Patch Set: Add back no-referrer-subframe.html Created 6 years, 9 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

OLD	NEW
1 <html>	1 <html>

2 <body>	2 <body>

3 <p>This tests that a javascript: URL loaded in an iframe has access to its p arent's frame</p>	3 <p>This tests that a javascript: URL loaded in an iframe has access to its p arent's frame</p>

4 <iframe id="aFrame"></iframe>	4 <iframe id="aFrame" name="aFrame"></iframe>

5 <p id='accessMe'>FAIL: Cross frame access from a javascript: URL was denied. </p>	5 <p id='accessMe'>FAIL: Cross frame access from a javascript: URL was denied. </p>

6 <script>	6 <script>

7 if (window.testRunner) {	7 if (window.testRunner) {

8 testRunner.dumpAsText();	8 testRunner.dumpAsText();

9 testRunner.dumpChildFramesAsText();	9 testRunner.dumpChildFramesAsText();

10 }	10 }

11	11

12 var url = "javascript:\"<html>"	12 var url = "javascript:\"<html>"

13 + "<scr" + "ipt>"	13 + "<scr" + "ipt>"

14 + "parent.document.getElementById('accessMe').innerHTML = 'PASS: Cross frame access from a javascript: URL was allowed!';"	14 + "parent.document.getElementById('accessMe').innerHTML = 'PASS: Cross frame access from a javascript: URL was allowed!';"

15 + "</scri" + "pt>"	15 + "</scri" + "pt>"

16 + "<body>"	16 + "<body>"

17 + "<p>Inner iframe.</p>"	17 + "<p>Inner iframe.</p>"

18 + "</body>"	18 + "</body>"

19 + "</html>\"";	19 + "</html>\"";

20	20

21 var iframe = document.getElementById("aFrame");	21 var iframe = document.getElementById("aFrame");

22 iframe.src = url;	22 iframe.src = url;

23 </script>	23 </script>

24 </body>	24 </body>

25 </html>	25 </html>

OLD	NEW