Block webpages from navigating to view-source URLs

third_party/WebKit/LayoutTests/http/tests/security/view-source-navigation-block.html

Index: third_party/WebKit/LayoutTests/http/tests/security/view-source-navigation-block.html
diff --git a/third_party/WebKit/LayoutTests/http/tests/security/view-source-navigation-block.html b/third_party/WebKit/LayoutTests/http/tests/security/view-source-navigation-block.html
new file mode 100644
index 0000000000000000000000000000000000000000..fcaa2950834784fa665ee2a5553d9c2df91eb97a
--- /dev/null
+++ b/third_party/WebKit/LayoutTests/http/tests/security/view-source-navigation-block.html
@@ -0,0 +1,27 @@
+<html lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
+<title>view-source navigation should be blocked</title>
+</head>
+<script>
+window.onunload = function() {
+  console.error('FAIL');
+  testRunner.notifyDone();

[Nate Chapin, 2016/05/27 23:57:32]

Nit: if (window.testRunner)

+}
+function test() {
+  window.location = "view-source:about:blank";
+  setTimeout(function() {
+    if (window.testRunner) {
+      document.getElementById("result").innerHTML = "PASS";
+      testRunner.notifyDone();
+    }
+  }, 1000);

[meacer, 2016/05/23 23:57:47]

This is ugly as it uses setTimeout with a non-zero value, but I can't find a
better way to check that a navigation doesn't complete. Happy to change to
something nicer.

[Charlie Reis, 2016/05/24 22:54:17]

Yeah, we shouldn't do this.  Maybe there's an error event we can listen for? 
Nate might know.

[Nate Chapin, 2016/05/27 23:57:32]

This is a bit tougher because it's view-source. Normally I'd say to navigate to
pass-and-notify-done.html, but its script won't run if it's view-source'ed. :)

Instead of using waitUntilDone/notifyDone, you could use testRunner.queueLoad().
The test won't complete while a queued load hasn't completed, so you could have
this page just display PASS, and try to navigationt to view-source:fail.html or
similar.

It might work to just drop the waitUntilDone/notifyDone calls, too, I can't
remember if setting window.location before the load event is guaranteed to block
test completion.

[meacer, 2016/05/31 23:57:54]

Looks like queueLoad triggers a browser initiated navigation, so it's not
helping here.

Unfortunately removing waitUntilDone/notifyDone doesn't work either, the test
finishes before the console message is printed (hence the setTimeout in my
original case).

Do we have something that does queueContentInitiatedLoad()? Should we introduce
one?

[Charlie Reis, 2016/06/01 22:59:51]

Do we actually need a layout test for this?  You've already added browser_test
coverage for renderer-initiated navigations, which should cover the same thing. 
I'd suggest proceeding without it unless there's a reason I'm missing.

+}
+if (window.testRunner) {
+  testRunner.dumpAsText();
+  testRunner.waitUntilDone();
+}
+document.addEventListener('DOMContentLoaded', test, false);
+</script>
+<div id="result"></div>
+</html>