Google Git
Sign in
chromium / chromium / blink / 9207625a100abe9b72333ac5dba02b38ca5f4466 / . / LayoutTests / http / tests / security
tree: f14c87cffc0e8de71a6bcb396e72225d45e98437 [path history] [tgz]
  1. 401-logout/
  2. aboutBlank/
  3. clipboard/
  4. contentSecurityPolicy/
  5. contentTypeOptions/
  6. cookies/
  7. dataURL/
  8. frameNavigation/
  9. isolatedWorld/
  10. javascriptURL/
  11. listener/
  12. MessagePort/
  13. mixedContent/
  14. originHeader/
  15. postMessage/
  16. resources/
  17. seamless/
  18. XFrameOptions/
  19. xssAuditor/
  20. beforeload-iframe-client-redirect-expected.txt
  21. beforeload-iframe-client-redirect.html
  22. beforeload-iframe-server-redirect-expected.txt
  23. beforeload-iframe-server-redirect.html
  24. calling-versus-current-expected.txt
  25. calling-versus-current.html
  26. cannot-read-cssrules-expected.txt
  27. cannot-read-cssrules-redirect-expected.txt
  28. cannot-read-cssrules-redirect.html
  29. cannot-read-cssrules.html
  30. canvas-cors-with-two-hosts-expected.txt
  31. canvas-cors-with-two-hosts.html
  32. canvas-remote-read-data-url-image-expected.txt
  33. canvas-remote-read-data-url-image.html
  34. canvas-remote-read-data-url-svg-image-expected.txt
  35. canvas-remote-read-data-url-svg-image.html
  36. canvas-remote-read-redirect-to-remote-image-expected.txt
  37. canvas-remote-read-redirect-to-remote-image.html
  38. canvas-remote-read-remote-image-allowed-expected.txt
  39. canvas-remote-read-remote-image-allowed-with-credentials-expected.txt
  40. canvas-remote-read-remote-image-allowed-with-credentials.html
  41. canvas-remote-read-remote-image-allowed.html
  42. canvas-remote-read-remote-image-blocked-no-crossorigin-expected.txt
  43. canvas-remote-read-remote-image-blocked-no-crossorigin.html
  44. canvas-remote-read-remote-image-blocked-then-allowed-expected.txt
  45. canvas-remote-read-remote-image-blocked-then-allowed.html
  46. canvas-remote-read-remote-image-document-domain-expected.txt
  47. canvas-remote-read-remote-image-document-domain.html
  48. canvas-remote-read-remote-image-expected.txt
  49. canvas-remote-read-remote-image-redirect-expected.txt
  50. canvas-remote-read-remote-image-redirect.html
  51. canvas-remote-read-remote-image.html
  52. canvas-remote-read-svg-image-expected.txt
  53. canvas-remote-read-svg-image.html
  54. cross-frame-access-call-expected.txt
  55. cross-frame-access-call.html
  56. cross-frame-access-callback-explicit-domain-ALLOW-expected.txt
  57. cross-frame-access-callback-explicit-domain-ALLOW.html
  58. cross-frame-access-callback-explicit-domain-DENY-expected.txt
  59. cross-frame-access-callback-explicit-domain-DENY.html
  60. cross-frame-access-child-explicit-domain-expected.txt
  61. cross-frame-access-child-explicit-domain.html
  62. cross-frame-access-custom-expected.txt
  63. cross-frame-access-custom.html
  64. cross-frame-access-delete-expected.txt
  65. cross-frame-access-delete.html
  66. cross-frame-access-document-direct-expected.txt
  67. cross-frame-access-document-direct.html
  68. cross-frame-access-DOMImplementation-expected.txt
  69. cross-frame-access-DOMImplementation.html
  70. cross-frame-access-enumeration-expected.txt
  71. cross-frame-access-enumeration.html
  72. cross-frame-access-first-time-expected.txt
  73. cross-frame-access-first-time.html
  74. cross-frame-access-frameelement-expected.txt
  75. cross-frame-access-frameelement.html
  76. cross-frame-access-frames-expected.txt
  77. cross-frame-access-frames.html
  78. cross-frame-access-get-custom-property-cached-expected.txt
  79. cross-frame-access-get-custom-property-cached.html
  80. cross-frame-access-get-expected.txt
  81. cross-frame-access-get-override-expected.txt
  82. cross-frame-access-get-override.html
  83. cross-frame-access-get.html
  84. cross-frame-access-getOwnPropertyDescriptor-expected.txt
  85. cross-frame-access-getOwnPropertyDescriptor.html
  86. cross-frame-access-location-get-expected.txt
  87. cross-frame-access-location-get-override-expected.txt
  88. cross-frame-access-location-get-override.html
  89. cross-frame-access-location-get.html
  90. cross-frame-access-location-prototype-expected.txt
  91. cross-frame-access-location-prototype.html
  92. cross-frame-access-location-put-expected.txt
  93. cross-frame-access-location-put.html
  94. cross-frame-access-name-getter-expected.txt
  95. cross-frame-access-name-getter.html
  96. cross-frame-access-object-getPrototypeOf-expected.txt
  97. cross-frame-access-object-getPrototypeOf.html
  98. cross-frame-access-object-prototype-expected.txt
  99. cross-frame-access-object-prototype.html
  100. cross-frame-access-parent-explicit-domain-expected.txt
  101. cross-frame-access-parent-explicit-domain.html
  102. cross-frame-access-port-expected.txt
  103. cross-frame-access-port-explicit-domain-expected.txt
  104. cross-frame-access-port-explicit-domain.html
  105. cross-frame-access-port.html
  106. cross-frame-access-protocol-expected.txt
  107. cross-frame-access-protocol-explicit-domain-expected.txt
  108. cross-frame-access-protocol-explicit-domain.html
  109. cross-frame-access-protocol.html
  110. cross-frame-access-put-expected.txt
  111. cross-frame-access-put.html
  112. cross-frame-access-selection-expected.txt
  113. cross-frame-access-selection.html
  114. cross-origin-appcache-allowed-expected.txt
  115. cross-origin-appcache-allowed.html
  116. cross-origin-css-expected.txt
  117. cross-origin-css-in-xml-expected.txt
  118. cross-origin-css-in-xml.xml
  119. cross-origin-css-primitive-expected.txt
  120. cross-origin-css-primitive.html
  121. cross-origin-css.html
  122. cross-origin-getMatchedCSSRules-expected.txt
  123. cross-origin-getMatchedCSSRules.html
  124. cross-origin-getMatchedCSSRules2-expected.txt
  125. cross-origin-getMatchedCSSRules2.html
  126. cross-origin-indexeddb-allowed-expected.txt
  127. cross-origin-indexeddb-allowed.html
  128. cross-origin-local-storage-allowed-expected.txt
  129. cross-origin-local-storage-allowed.html
  130. cross-origin-local-storage-wk1-expected.txt
  131. cross-origin-local-storage-wk1.html
  132. cross-origin-script-window-onerror-expected.txt
  133. cross-origin-script-window-onerror-redirected-expected.txt
  134. cross-origin-script-window-onerror-redirected.html
  135. cross-origin-script-window-onerror.html
  136. cross-origin-session-storage-allowed-expected.txt
  137. cross-origin-session-storage-allowed.html
  138. cross-origin-shared-worker-allowed-expected.txt
  139. cross-origin-shared-worker-allowed.html
  140. cross-origin-websql-allowed-expected.txt
  141. cross-origin-websql-allowed.html
  142. cross-origin-worker-indexeddb-allowed-expected.txt
  143. cross-origin-worker-indexeddb-allowed.html
  144. cross-origin-worker-websql-allowed-expected.txt
  145. cross-origin-worker-websql-allowed.html
  146. cross-origin-xsl-BLOCKED-expected.txt
  147. cross-origin-xsl-BLOCKED.html
  148. cross-origin-xsl-redirect-BLOCKED-expected.txt
  149. cross-origin-xsl-redirect-BLOCKED.html
  150. data-url-inline.css-expected.txt
  151. data-url-inline.css.html
  152. dataTransfer-set-data-file-url-expected.txt
  153. dataTransfer-set-data-file-url.html
  154. detached-sandboxed-frame-access-expected.txt
  155. detached-sandboxed-frame-access.html
  156. document-all-expected.txt
  157. document-all.html
  158. drag-drop-different-origin-expected.txt
  159. drag-drop-different-origin.html
  160. drag-drop-same-unique-origin-expected.txt
  161. drag-drop-same-unique-origin.html
  162. drag-over-remote-content-iframe-expected.txt
  163. drag-over-remote-content-iframe.html
  164. escape-form-data-field-names-expected.txt
  165. escape-form-data-field-names.html
  166. feed-urls-from-remote-expected.txt
  167. feed-urls-from-remote.html
  168. filesystem-iframe-from-remote-expected.txt
  169. filesystem-iframe-from-remote.html
  170. frame-loading-via-document-write-expected.txt
  171. frame-loading-via-document-write.html
  172. host-compare-case-insensitive-expected.txt
  173. host-compare-case-insensitive.html
  174. img-crossorigin-loads-same-origin-expected.txt
  175. img-crossorigin-loads-same-origin.html
  176. img-with-failed-cors-check-fails-to-load-expected.txt
  177. img-with-failed-cors-check-fails-to-load.html
  178. inactive-document-with-empty-security-origin-expected.txt
  179. inactive-document-with-empty-security-origin.html
  180. local-CSS-from-remote-expected.txt
  181. local-CSS-from-remote.html
  182. local-iFrame-from-remote-expected.txt
  183. local-iFrame-from-remote.html
  184. local-image-from-remote-expected.txt
  185. local-image-from-remote-whitelisted-expected.txt
  186. local-image-from-remote-whitelisted.html
  187. local-image-from-remote.html
  188. local-JavaScript-from-remote-expected.txt
  189. local-JavaScript-from-remote.html
  190. local-user-CSS-from-remote-expected.txt
  191. local-user-CSS-from-remote.html
  192. local-video-poster-from-remote-expected.txt
  193. local-video-poster-from-remote.html
  194. local-video-source-from-remote-expected.txt
  195. local-video-source-from-remote.html
  196. local-video-src-from-remote-expected.txt
  197. local-video-src-from-remote.html
  198. location-prototype-expected.txt
  199. location-prototype.html
  200. no-indexeddb-from-sandbox-expected.txt
  201. no-indexeddb-from-sandbox.html
  202. no-popup-from-sandbox-expected.txt
  203. no-popup-from-sandbox-top-expected.txt
  204. no-popup-from-sandbox-top.html
  205. no-popup-from-sandbox.html
  206. no-referrer-expected.txt
  207. no-referrer.html
  208. object-literals-expected.txt
  209. object-literals.html
  210. popup-allowed-by-sandbox-is-sandboxed-control-expected.txt
  211. popup-allowed-by-sandbox-is-sandboxed-control.html
  212. popup-allowed-by-sandbox-is-sandboxed-expected.txt
  213. popup-allowed-by-sandbox-is-sandboxed.html
  214. popup-allowed-by-sandbox-when-allowed-expected.txt
  215. popup-allowed-by-sandbox-when-allowed.html
  216. popup-blocked-from-fake-event-expected.txt
  217. popup-blocked-from-fake-event.html
  218. popup-blocked-from-window-open-expected.txt
  219. popup-blocked-from-window-open.html
  220. protocol-compare-case-insensitive-expected.txt
  221. protocol-compare-case-insensitive.html
  222. redirect-BLOCKED-to-localURL-expected.txt
  223. redirect-BLOCKED-to-localURL.html
  224. referrer-policy-always-expected.txt
  225. referrer-policy-always.html
  226. referrer-policy-default-expected.txt
  227. referrer-policy-default.html
  228. referrer-policy-https-always-expected.txt
  229. referrer-policy-https-always.html
  230. referrer-policy-https-default-expected.txt
  231. referrer-policy-https-default.html
  232. referrer-policy-https-never-expected.txt
  233. referrer-policy-https-never.html
  234. referrer-policy-https-origin-expected.txt
  235. referrer-policy-https-origin.html
  236. referrer-policy-never-expected.txt
  237. referrer-policy-never.html
  238. referrer-policy-origin-expected.txt
  239. referrer-policy-origin.html
  240. referrer-policy-redirect-expected.txt
  241. referrer-policy-redirect-link-expected.txt
  242. referrer-policy-redirect-link.html
  243. referrer-policy-redirect.html
  244. referrer-policy-rel-noreferrer-expected.txt
  245. referrer-policy-rel-noreferrer.html
  246. referrer-policy-window-open-expected.txt
  247. referrer-policy-window-open.html
  248. sandbox-inherit-to-initial-document-2-expected.txt
  249. sandbox-inherit-to-initial-document-2.html
  250. sandbox-inherit-to-initial-document-expected.txt
  251. sandbox-inherit-to-initial-document.html
  252. sandboxed-iframe-blocks-access-from-parent-expected.txt
  253. sandboxed-iframe-blocks-access-from-parent.html
  254. sandboxed-iframe-document-cookie-expected.txt
  255. sandboxed-iframe-document-cookie.html
  256. sandboxed-iframe-form-top-expected.txt
  257. sandboxed-iframe-form-top.html
  258. sandboxed-iframe-invalid-expected.txt
  259. sandboxed-iframe-invalid.html
  260. sandboxed-iframe-modify-self-expected.txt
  261. sandboxed-iframe-modify-self.html
  262. sandboxed-iframe-origin-add-expected.txt
  263. sandboxed-iframe-origin-add.html
  264. sandboxed-iframe-origin-remove-expected.txt
  265. sandboxed-iframe-origin-remove.html
  266. script-crossorigin-loads-correctly-expected.txt
  267. script-crossorigin-loads-correctly.html
  268. script-crossorigin-loads-same-origin-expected.txt
  269. script-crossorigin-loads-same-origin.html
  270. script-crossorigin-onerror-information-expected.txt
  271. script-crossorigin-onerror-information.html
  272. script-no-crossorigin-onerror-should-be-sanitized-expected.txt
  273. script-no-crossorigin-onerror-should-be-sanitized.html
  274. script-with-failed-cors-check-fails-to-load-expected.txt
  275. script-with-failed-cors-check-fails-to-load.html
  276. setDomainRelaxationForbiddenForURLScheme-expected.txt
  277. setDomainRelaxationForbiddenForURLScheme.html
  278. srcdoc-can-access-parent-expected.txt
  279. srcdoc-can-access-parent.html
  280. srcdoc-in-sandbox-cannot-access-parent-expected.txt
  281. srcdoc-in-sandbox-cannot-access-parent.html
  282. srcdoc-inherits-referrer-expected.txt
  283. srcdoc-inherits-referrer-for-forms-expected.txt
  284. srcdoc-inherits-referrer-for-forms.html
  285. srcdoc-inherits-referrer.html
  286. stylesheet-href-redirect-expected.txt
  287. stylesheet-href-redirect.html
  288. svg-image-leak-expected.txt
  289. svg-image-leak.html
  290. text-track-crossorigin-expected.txt
  291. text-track-crossorigin.html
  292. video-cross-origin-readback-expected.txt
  293. video-cross-origin-readback.html
  294. video-poster-cross-origin-crash-expected.txt
  295. video-poster-cross-origin-crash.html
  296. video-poster-cross-origin-crash2-expected.txt
  297. video-poster-cross-origin-crash2.html
  298. view-source-javascript-url-in-document-expected.txt
  299. view-source-javascript-url-in-document.html
  300. webgl-remote-read-remote-image-allowed-expected.txt
  301. webgl-remote-read-remote-image-allowed-with-credentials-expected.txt
  302. webgl-remote-read-remote-image-allowed-with-credentials.html
  303. webgl-remote-read-remote-image-allowed.html
  304. webgl-remote-read-remote-image-blocked-no-crossorigin-expected.txt
  305. webgl-remote-read-remote-image-blocked-no-crossorigin.html
  306. window-events-clear-domain-expected.txt
  307. window-events-clear-domain.html
  308. window-events-clear-port-expected.txt
  309. window-events-clear-port.html
  310. window-events-pass-expected.txt
  311. window-events-pass.html
  312. window-named-proto-expected.txt
  313. window-named-proto.html
  314. window-named-valueOf-expected.txt
  315. window-named-valueOf.html
  316. window-onerror-exception-in-iframe-expected.txt
  317. window-onerror-exception-in-iframe.html
  318. window-properties-clear-domain-expected.txt
  319. window-properties-clear-domain.html
  320. window-properties-clear-port-expected.txt
  321. window-properties-clear-port.html
  322. window-properties-pass-expected.txt
  323. window-properties-pass.html
  324. xss-DENIED-assign-location-hash-expected.txt
  325. xss-DENIED-assign-location-hash.html
  326. xss-DENIED-assign-location-host-expected.txt
  327. xss-DENIED-assign-location-host.html
  328. xss-DENIED-assign-location-hostname-expected.txt
  329. xss-DENIED-assign-location-hostname.html
  330. xss-DENIED-assign-location-href-javascript-expected.txt
  331. xss-DENIED-assign-location-href-javascript.html
  332. xss-DENIED-assign-location-nonstandardProperty-expected.txt
  333. xss-DENIED-assign-location-nonstandardProperty.html
  334. xss-DENIED-assign-location-pathname-expected.txt
  335. xss-DENIED-assign-location-pathname.html
  336. xss-DENIED-assign-location-protocol-expected.txt
  337. xss-DENIED-assign-location-protocol.html
  338. xss-DENIED-assign-location-reload-expected.txt
  339. xss-DENIED-assign-location-reload.html
  340. xss-DENIED-assign-location-search-expected.txt
  341. xss-DENIED-assign-location-search.html
  342. xss-DENIED-contentWindow-eval-expected.txt
  343. xss-DENIED-contentWindow-eval.html
  344. xss-DENIED-defineProperty-expected.txt
  345. xss-DENIED-defineProperty.html
  346. xss-DENIED-frame-name-expected.txt
  347. xss-DENIED-frame-name.html
  348. xss-DENIED-getSelection-from-inactive-domwindow-expected.txt
  349. xss-DENIED-getSelection-from-inactive-domwindow.html
  350. xss-DENIED-getSVGDocument-iframe-expected.txt
  351. xss-DENIED-getSVGDocument-iframe.html
  352. xss-DENIED-getSVGDocument-object-expected.txt
  353. xss-DENIED-getSVGDocument-object.html
  354. xss-DENIED-htmlelelment-with-iframe-proto-expected.txt
  355. xss-DENIED-htmlelelment-with-iframe-proto.html
  356. xss-DENIED-iframe-src-alias-expected.txt
  357. xss-DENIED-iframe-src-alias.html
  358. xss-DENIED-invalid-domain-change-expected.txt
  359. xss-DENIED-invalid-domain-change.html
  360. xss-DENIED-javascript-with-spaces-expected.txt
  361. xss-DENIED-javascript-with-spaces.html
  362. xss-DENIED-method-with-iframe-proto-expected.txt
  363. xss-DENIED-method-with-iframe-proto.html
  364. xss-DENIED-mime-type-execute-as-html-expected.txt
  365. xss-DENIED-mime-type-execute-as-html.html
  366. xss-DENIED-non-shadowable-propterty-with-iframe-proto-expected.txt
  367. xss-DENIED-non-shadowable-propterty-with-iframe-proto.html
  368. xss-DENIED-object-element-expected.txt
  369. xss-DENIED-object-element.html
  370. xss-DENIED-regular-propterty-with-iframe-proto-expected.txt
  371. xss-DENIED-regular-propterty-with-iframe-proto.html
  372. xss-DENIED-sandboxed-iframe-expected.txt
  373. xss-DENIED-sandboxed-iframe.html
  374. xss-DENIED-synchronous-form-expected.txt
  375. xss-DENIED-synchronous-form.html
  376. xss-DENIED-synchronous-frame-load-in-javascript-url-expected.txt
  377. xss-DENIED-synchronous-frame-load-in-javascript-url.html
  378. xss-DENIED-window-name-alert-expected.txt
  379. xss-DENIED-window-name-alert.html
  380. xss-DENIED-window-name-navigator-expected.txt
  381. xss-DENIED-window-name-navigator.html
  382. xss-DENIED-window-open-javascript-url-expected.txt
  383. xss-DENIED-window-open-javascript-url-with-spaces-expected.txt
  384. xss-DENIED-window-open-javascript-url-with-spaces.html
  385. xss-DENIED-window-open-javascript-url.html
  386. xss-DENIED-window-open-parent-expected.txt
  387. xss-DENIED-window-open-parent.html
  388. xss-DENIED-xml-external-entity-expected.txt
  389. xss-DENIED-xml-external-entity.xhtml
  390. xss-DENIED-xsl-document-expected.txt
  391. xss-DENIED-xsl-document-redirect-expected.txt
  392. xss-DENIED-xsl-document-redirect.xml
  393. xss-DENIED-xsl-document-securityOrigin-expected.txt
  394. xss-DENIED-xsl-document-securityOrigin.xml
  395. xss-DENIED-xsl-document.xml
  396. xss-DENIED-xsl-external-entity-expected.txt
  397. xss-DENIED-xsl-external-entity-redirect-expected.txt
  398. xss-DENIED-xsl-external-entity-redirect.xml
  399. xss-DENIED-xsl-external-entity.xml
  400. xss-eval-expected.txt
  401. xss-eval.html