third_party/WebKit/LayoutTests/external/wpt/x-frame-options/invalid.sub.html - chromium/src - Git at Google

 <!DOCTYPE html>
 <script src="/resources/testharness.js"></script>
 <script src="/resources/testharnessreport.js"></script>
 <script src="./support/helper.js"></script>
 <body>
 <script>
   async_test(t => {
     var i = document.createElement('iframe');
     i.src = "./support/xfo.py?value=INVALID";

     wait_for_message_from(i, t)
       .then(t.step_func_done(e => {
         assert_equals(e.data, "Loaded");
         i.remove();
       }));

     document.body.appendChild(i);
   }, "`XFO: INVALID` allows same-origin framing.");

   async_test(t => {
     var i = document.createElement('iframe');
     i.src = "http://{{domains[www]}}:{{ports[http][0]}}/x-frame-options/support/xfo.py?value=INVALID";

     wait_for_message_from(i, t)
       .then(t.step_func_done(e => {
         assert_equals(e.data, "Loaded");
         i.remove();
       }));

     document.body.appendChild(i);
   }, "`XFO: INVALID` allows cross-origin framing.");

   async_test(t => {
     var i = document.createElement('iframe');
     i.src = "./support/xfo.py?value=ALLOWALL";

     wait_for_message_from(i, t)
       .then(t.step_func_done(e => {
         assert_equals(e.data, "Loaded");
         i.remove();
       }));

     document.body.appendChild(i);
   }, "`XFO: ALLOWALL` allows same-origin framing.");

   async_test(t => {
     var i = document.createElement('iframe');
     i.src = "http://{{domains[www]}}:{{ports[http][0]}}/x-frame-options/support/xfo.py?value=ALLOWALL";

     wait_for_message_from(i, t)
       .then(t.step_func_done(e => {
         assert_equals(e.data, "Loaded");
         i.remove();
       }));

     document.body.appendChild(i);
   }, "`XFO: ALLOWALL` allows cross-origin framing.");

   async_test(t => {
     var i = document.createElement('iframe');
     i.src = "./support/xfo.py?value=";

     wait_for_message_from(i, t)
       .then(t.step_func_done(e => {
         assert_equals(e.data, "Loaded");
         i.remove();
       }));

     document.body.appendChild(i);
   }, "Empty `XFO:` allows same-origin framing.");

   async_test(t => {
     var i = document.createElement('iframe');
     i.src = "http://{{domains[www]}}:{{ports[http][0]}}/x-frame-options/support/xfo.py?value=";

     wait_for_message_from(i, t)
       .then(t.step_func_done(e => {
         assert_equals(e.data, "Loaded");
         i.remove();
       }));

     document.body.appendChild(i);
   }, "Empty `XFO:` allows cross-origin framing.");
 </script>
	<!DOCTYPE html>
	<script src="/resources/testharness.js"></script>
	<script src="/resources/testharnessreport.js"></script>
	<script src="./support/helper.js"></script>
	<body>
	<script>
	async_test(t => {
	var i = document.createElement('iframe');
	i.src = "./support/xfo.py?value=INVALID";

	wait_for_message_from(i, t)
	.then(t.step_func_done(e => {
	assert_equals(e.data, "Loaded");
	i.remove();
	}));

	document.body.appendChild(i);
	}, "`XFO: INVALID` allows same-origin framing.");

	async_test(t => {
	var i = document.createElement('iframe');
	i.src = "http://{{domains[www]}}:{{ports[http][0]}}/x-frame-options/support/xfo.py?value=INVALID";

	wait_for_message_from(i, t)
	.then(t.step_func_done(e => {
	assert_equals(e.data, "Loaded");
	i.remove();
	}));

	document.body.appendChild(i);
	}, "`XFO: INVALID` allows cross-origin framing.");

	async_test(t => {
	var i = document.createElement('iframe');
	i.src = "./support/xfo.py?value=ALLOWALL";

	wait_for_message_from(i, t)
	.then(t.step_func_done(e => {
	assert_equals(e.data, "Loaded");
	i.remove();
	}));

	document.body.appendChild(i);
	}, "`XFO: ALLOWALL` allows same-origin framing.");

	async_test(t => {
	var i = document.createElement('iframe');
	i.src = "http://{{domains[www]}}:{{ports[http][0]}}/x-frame-options/support/xfo.py?value=ALLOWALL";

	wait_for_message_from(i, t)
	.then(t.step_func_done(e => {
	assert_equals(e.data, "Loaded");
	i.remove();
	}));

	document.body.appendChild(i);
	}, "`XFO: ALLOWALL` allows cross-origin framing.");

	async_test(t => {
	var i = document.createElement('iframe');
	i.src = "./support/xfo.py?value=";

	wait_for_message_from(i, t)
	.then(t.step_func_done(e => {
	assert_equals(e.data, "Loaded");
	i.remove();
	}));

	document.body.appendChild(i);
	}, "Empty `XFO:` allows same-origin framing.");

	async_test(t => {
	var i = document.createElement('iframe');
	i.src = "http://{{domains[www]}}:{{ports[http][0]}}/x-frame-options/support/xfo.py?value=";

	wait_for_message_from(i, t)
	.then(t.step_func_done(e => {
	assert_equals(e.data, "Loaded");
	i.remove();
	}));

	document.body.appendChild(i);
	}, "Empty `XFO:` allows cross-origin framing.");
	</script>