| Index: chrome/test/data/extensions/api_test/sandboxed_pages_csp/main.js
|
| diff --git a/chrome/test/data/extensions/api_test/sandboxed_pages_csp/main.js b/chrome/test/data/extensions/api_test/sandboxed_pages_csp/main.js
|
| new file mode 100644
|
| index 0000000000000000000000000000000000000000..4b4f45fbd113df20976fa1f2ca099679ba31d849
|
| --- /dev/null
|
| +++ b/chrome/test/data/extensions/api_test/sandboxed_pages_csp/main.js
|
| @@ -0,0 +1,36 @@
|
| +// Copyright 2016 The Chromium Authors. All rights reserved.
|
| +// Use of this source code is governed by a BSD-style license that can be
|
| +// found in the LICENSE file.
|
| +
|
| +var LOCAL_FILE_NAME = 'local_frame.html';
|
| +var REMOTE_FILE_NAME = 'remote_frame.html';
|
| +
|
| +onmessage = function(e) {
|
| + chrome.test.assertEq(e.data, 'succeeded');
|
| + chrome.test.succeed();
|
| +};
|
| +
|
| +var loadIframeContentInSandboxedPage = function(localUrl, remoteUrl) {
|
| + var sandboxedFrame = document.createElement('iframe');
|
| + sandboxedFrame.src = 'sandboxed.html';
|
| + sandboxedFrame.onload = function() {
|
| + sandboxedFrame.contentWindow.postMessage(
|
| + JSON.stringify(['load', localUrl, remoteUrl]), '*');
|
| + sandboxedFrame.onload = null;
|
| + };
|
| + document.body.appendChild(sandboxedFrame);
|
| +};
|
| +
|
| +onload = function() {
|
| + chrome.test.getConfig(function(config) {
|
| + chrome.test.runTests([
|
| + // Local frame will succeed loading, but remote frame will fail.
|
| + function sandboxedFrameTestLocalAndRemote() {
|
| + var remoteUrl = 'http://localhost:' + config.testServer.port +
|
| + '/extensions/api_test/sandboxed_pages_csp/' + REMOTE_FILE_NAME;
|
| + loadIframeContentInSandboxedPage(
|
| + LOCAL_FILE_NAME, remoteUrl);
|
| + }
|
| + ]);
|
| + });
|
| +};
|
|
|
Chromium Code Reviews
Issue 2563843002:
Restrict app sandbox's CSP to disallow loading web content in them. (Closed)
