| <?php |
| // Copyright 2016 The Chromium Authors. All rights reserved. |
| // Use of this source code is governed by a BSD-style license that can be |
| // found in the LICENSE file. |
| |
| // This test ensures that payment feature when disabled may not be called by |
| // any iframe even when allowpaymentrequest is set. |
| |
| Header("Feature-Policy: payment 'none'"); |
| ?> |
| |
| <!DOCTYPE html> |
| <script src="../../resources/testharness.js"></script> |
| <script src="../../resources/testharnessreport.js"></script> |
| <script src="resources/helper.js"></script> |
| <iframe></iframe> |
| <iframe allowpaymentrequest></iframe> |
| <script> |
| var srcs = [ |
| "resources/feature-policy-payment.html", |
| "http://localhost:8000/feature-policy/resources/feature-policy-payment.html" |
| ]; |
| |
| function loadFrame(iframe, src) { |
| var allowpaymentrequest = iframe.hasAttribute('allowpaymentrequest'); |
| promise_test(function() { |
| iframe.src = src; |
| return new Promise(function(resolve, reject) { |
| window.addEventListener('message', function(e) { |
| resolve(e.data); |
| }, { once: true }); |
| }).then(function(data) { |
| assert_false(data.enabled, 'Paymentrequest():'); |
| assert_equals(data.name, 'SecurityError', 'Exception Name:'); |
| assert_equals(data.message, "Failed to construct 'PaymentRequest': " + |
| "Must be in a top-level browsing context or an iframe needs to " + |
| "specify 'allowpaymentrequest' explicitly", 'Error Message:'); |
| }); |
| }, 'Paymentrequest disabled on URL: ' + src + ' with allowpaymentrequest = ' + |
| allowpaymentrequest); |
| } |
| |
| window.onload = function() { |
| loadIframes(srcs); |
| } |
| </script> |