| Index: Source/web/tests/WebFrameTest.cpp
|
| diff --git a/Source/web/tests/WebFrameTest.cpp b/Source/web/tests/WebFrameTest.cpp
|
| index e6f1df996b909f16bb2c4f9f297ce68434f1205f..a8a6522782085f48c255ffc3bf8df4e1d72ed61c 100644
|
| --- a/Source/web/tests/WebFrameTest.cpp
|
| +++ b/Source/web/tests/WebFrameTest.cpp
|
| @@ -49,7 +49,9 @@
|
| #include "core/editing/SpellChecker.h"
|
| #include "core/editing/VisiblePosition.h"
|
| #include "core/events/MouseEvent.h"
|
| +#include "core/fetch/FetchRequest.h"
|
| #include "core/fetch/MemoryCache.h"
|
| +#include "core/fetch/ResourceFetcher.h"
|
| #include "core/frame/FrameHost.h"
|
| #include "core/frame/FrameView.h"
|
| #include "core/frame/LocalFrame.h"
|
| @@ -152,6 +154,7 @@ class WebFrameTest : public testing::Test {
|
| protected:
|
| WebFrameTest()
|
| : m_baseURL("http://www.test.com/")
|
| + , m_notBaseURL("http://www.nottest.com/")
|
| , m_chromeURL("chrome://")
|
| {
|
| }
|
| @@ -171,6 +174,17 @@ protected:
|
| URLTestHelpers::registerMockedURLFromBaseURL(WebString::fromUTF8(m_chromeURL.c_str()), WebString::fromUTF8(fileName.c_str()));
|
| }
|
|
|
| +
|
| + void registerMockedHttpURLLoadWithCSP(const std::string& fileName, const std::string& csp, bool reportOnly = false)
|
| + {
|
| + WebURLResponse response;
|
| + response.initialize();
|
| + response.setMIMEType("text/html");
|
| + response.addHTTPHeaderField(reportOnly ? WebString("Content-Security-Policy-Report-Only") : WebString("Content-Security-Policy"), WebString::fromUTF8(csp));
|
| + std::string fullString = m_baseURL + fileName;
|
| + URLTestHelpers::registerMockedURLLoadWithCustomResponse(toKURL(fullString.c_str()), WebString::fromUTF8(fileName.c_str()), WebString::fromUTF8(""), response);
|
| + }
|
| +
|
| void applyViewportStyleOverride(FrameTestHelpers::WebViewHelper* webViewHelper)
|
| {
|
| RefPtrWillBeRawPtr<StyleSheetContents> styleSheet = StyleSheetContents::create(CSSParserContext(UASheetMode, 0));
|
| @@ -223,6 +237,7 @@ protected:
|
| }
|
|
|
| std::string m_baseURL;
|
| + std::string m_notBaseURL;
|
| std::string m_chromeURL;
|
| };
|
|
|
| @@ -6215,6 +6230,71 @@ TEST_F(WebFrameTest, NotifyManifestChange)
|
| EXPECT_EQ(14, webFrameClient.manifestChangeCount());
|
| }
|
|
|
| +static ResourcePtr<Resource> fetchManifest(Document* document, const KURL& url)
|
| +{
|
| + FetchRequest fetchRequest = FetchRequest(ResourceRequest(url), FetchInitiatorInfo());
|
| + fetchRequest.mutableResourceRequest().setRequestContext(WebURLRequest::RequestContextManifest);
|
| +
|
| + return document->fetcher()->fetchSynchronously(fetchRequest);
|
| +}
|
| +
|
| +TEST_F(WebFrameTest, ManifestFetch)
|
| +{
|
| + registerMockedHttpURLLoad("foo.html");
|
| + registerMockedHttpURLLoad("link-manifest-fetch.json");
|
| +
|
| + FrameTestHelpers::WebViewHelper webViewHelper;
|
| + webViewHelper.initializeAndLoad(m_baseURL + "foo.html");
|
| + Document* document = toWebLocalFrameImpl(webViewHelper.webViewImpl()->mainFrame())->frame()->document();
|
| +
|
| + ResourcePtr<Resource> resource = fetchManifest(document, toKURL(m_baseURL + "link-manifest-fetch.json"));
|
| +
|
| + EXPECT_TRUE(resource->isLoaded());
|
| +}
|
| +
|
| +TEST_F(WebFrameTest, ManifestCSPFetchAllow)
|
| +{
|
| + URLTestHelpers::registerMockedURLLoad(toKURL(m_notBaseURL + "link-manifest-fetch.json"), "link-manifest-fetch.json");
|
| + registerMockedHttpURLLoadWithCSP("foo.html", "manifest-src *");
|
| +
|
| + FrameTestHelpers::WebViewHelper webViewHelper;
|
| + webViewHelper.initializeAndLoad(m_baseURL + "foo.html");
|
| + Document* document = toWebLocalFrameImpl(webViewHelper.webViewImpl()->mainFrame())->frame()->document();
|
| +
|
| + ResourcePtr<Resource> resource = fetchManifest(document, toKURL(m_notBaseURL + "link-manifest-fetch.json"));
|
| +
|
| + EXPECT_TRUE(resource->isLoaded());
|
| +}
|
| +
|
| +TEST_F(WebFrameTest, ManifestCSPFetchSelf)
|
| +{
|
| + URLTestHelpers::registerMockedURLLoad(toKURL(m_notBaseURL + "link-manifest-fetch.json"), "link-manifest-fetch.json");
|
| + registerMockedHttpURLLoadWithCSP("foo.html", "manifest-src 'self'");
|
| +
|
| + FrameTestHelpers::WebViewHelper webViewHelper;
|
| + webViewHelper.initializeAndLoad(m_baseURL + "foo.html");
|
| + Document* document = toWebLocalFrameImpl(webViewHelper.webViewImpl()->mainFrame())->frame()->document();
|
| +
|
| + ResourcePtr<Resource> resource = fetchManifest(document, toKURL(m_notBaseURL + "link-manifest-fetch.json"));
|
| +
|
| + EXPECT_EQ(0, resource.get()); // Fetching resource wasn't allowed.
|
| +}
|
| +
|
| +TEST_F(WebFrameTest, ManifestCSPFetchSelfReportOnly)
|
| +{
|
| + URLTestHelpers::registerMockedURLLoad(toKURL(m_notBaseURL + "link-manifest-fetch.json"), "link-manifest-fetch.json");
|
| + registerMockedHttpURLLoadWithCSP("foo.html", "manifest-src 'self'", /* report only */ true);
|
| +
|
| + FrameTestHelpers::WebViewHelper webViewHelper;
|
| + webViewHelper.initializeAndLoad(m_baseURL + "foo.html");
|
| + Document* document = toWebLocalFrameImpl(webViewHelper.webViewImpl()->mainFrame())->frame()->document();
|
| +
|
| + ResourcePtr<Resource> resource = fetchManifest(document, toKURL(m_notBaseURL + "link-manifest-fetch.json"));
|
| +
|
| + EXPECT_TRUE(resource->isLoaded());
|
| +}
|
| +
|
| +
|
| TEST_F(WebFrameTest, ReloadBypassingCache)
|
| {
|
| // Check that a reload ignoring cache on a frame will result in the cache
|
|
|
Chromium Code Reviews
Issue 570563003:
Implement CSP check for manifest fetching (Closed)
Base URL: svn://svn.chromium.org/blink/trunk