Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(14)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: third_party/WebKit/LayoutTests/http/tests/security/mixedContent/insecure-iframe-with-hsts.https.html

Issue 2702263002: Ensure that mixed content checks preceed HSTS checks. (Closed)
Patch Set: Created 3 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « no previous file | third_party/WebKit/LayoutTests/http/tests/security/mixedContent/insecure-iframe-with-hsts.https-expected.txt » ('j') | no next file with comments »
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
(Empty)
1 <!DOCTYPE html>
2 <script src="/resources/testharness.js"></script>
3 <script src="/resources/testharnessreport.js"></script>
4 <body>
5 <script>
6 window.testRunner.dumpFrameLoadCallbacks();
7
8 async_test(t => {
9 fetch("https://hsts-example.test:8443/security/resources/hsts.php?as-fetch")
10 .then(t.step_func(_ => {
11 var i = document.createElement('iframe');
12
13 // Note: HTTP, not HTTPS:
14 i.src = "http://hsts-example.test:8443/security/resources/hsts.php";
15 window.onmessage = t.unreached_func("No message should be received from the frame.");
16
17 // Give the message a chance to get through.
18 document.body.appendChild(i);
19 requestAnimationFrame(_ => t.done());
20 }));
21 }, "HSTS does not bypass MIX.");
22 </script>
OLDNEW
« no previous file with comments | « no previous file | third_party/WebKit/LayoutTests/http/tests/security/mixedContent/insecure-iframe-with-hsts.https-expected.txt » ('j') | no next file with comments »

Powered by Google App Engine
This is Rietveld 408576698