Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(100)

Unified Diff: LayoutTests/http/tests/security/xssAuditor/block-does-not-leak-location-expected.txt

Issue 19095003: Throw 'SecurityError' upon cross-origin Location access. (Closed) Base URL: svn://svn.chromium.org/blink/trunk
Patch Set: rebaseline. Created 7 years, 5 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View side-by-side diff with in-line comments
Download patch
Index: LayoutTests/http/tests/security/xssAuditor/block-does-not-leak-location-expected.txt
diff --git a/LayoutTests/http/tests/security/xssAuditor/block-does-not-leak-location-expected.txt b/LayoutTests/http/tests/security/xssAuditor/block-does-not-leak-location-expected.txt
index 7570d690017070fe447e154670943e903a46a017..13d210b0c416aecfff2536f7d9778cb7a51a55f4 100644
--- a/LayoutTests/http/tests/security/xssAuditor/block-does-not-leak-location-expected.txt
+++ b/LayoutTests/http/tests/security/xssAuditor/block-does-not-leak-location-expected.txt
@@ -6,13 +6,9 @@ CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from access
CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a frame with origin "http://localhost:8000". Protocols, domains, and ports must match.
CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a frame with origin "null". The frame requesting access has a protocol of "http", the frame being accessed has a protocol of "data". Protocols must match.
-CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a frame with origin "null". The frame requesting access has a protocol of "http", the frame being accessed has a protocol of "data". Protocols must match.
-
-CONSOLE MESSAGE: Blocked a frame with origin "http://127.0.0.1:8000" from accessing a frame with origin "http://localhost:8000". Protocols, domains, and ports must match.
PASS xssed.contentDocument is null
PASS xssed.contentDocument is crossorigin.contentDocument
-PASS xssed.contentWindow.location.href is undefined.
-PASS xssed.contentWindow.location.href is crossorigin.contentWindow.location.href
+PASS xssed.contentWindow.location.href threw exception SecurityError: An attempt was made to break through the security policy of the user agent..
PASS successfullyParsed is true
TEST COMPLETE

Powered by Google App Engine
This is Rietveld 408576698