| Index: LayoutTests/http/tests/security/cross-frame-access-callback-explicit-domain-DENY-expected.txt
|
| diff --git a/LayoutTests/http/tests/security/cross-frame-access-callback-explicit-domain-DENY-expected.txt b/LayoutTests/http/tests/security/cross-frame-access-callback-explicit-domain-DENY-expected.txt
|
| index 9d387989ddf0cf0ff9d8ed1ec5ece11aa3fd5fd3..9a294042540d942e1e1e3f7382b1cf4e4dd80f2d 100644
|
| --- a/LayoutTests/http/tests/security/cross-frame-access-callback-explicit-domain-DENY-expected.txt
|
| +++ b/LayoutTests/http/tests/security/cross-frame-access-callback-explicit-domain-DENY-expected.txt
|
| @@ -1,4 +1,5 @@
|
| CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a frame with origin "http://127.0.0.1:8000". The frame requesting access set "document.domain" to "127.0.0.1", but the frame being accessed did not. Both must set "document.domain" to the same value to allow access.
|
| +CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a frame with origin "http://127.0.0.1:8000". The frame requesting access set "document.domain" to "127.0.0.1", but the frame being accessed did not. Both must set "document.domain" to the same value to allow access.
|
| Test that a child frame can't define a function and the use it to access parent properties after document.domain write blocks the access.
|
|
|
|
|
| @@ -7,3 +8,5 @@ Test that a child frame can't define a function and the use it to access parent
|
| Frame: '<!--framePath //<!--frame0-->-->'
|
| --------
|
| PASS: canGet('parentWindow.location.href') should be 'false' and is.
|
| +PASS: accessThrowsException('parentWindow.location.href') should be 'true' and is.
|
| +
|
|
|
Chromium Code Reviews
Issue 19095003:
Throw 'SecurityError' upon cross-origin Location access. (Closed)
Base URL: svn://svn.chromium.org/blink/trunk