content/test/data/page-executing-trust-token-signing-from-204-subframe.html - chromium/src - Git at Google

 <!DOCTYPE html>
 <meta charset="utf-8">

 <script>
   "use strict";
   const createChildAndExecuteSigningOp = function() {
     // Assuming the /nocontent URL is handled by a server returning HTTP 204,
     // which is the case for EmbeddedTestServers using the default handlers,
     // |child| will not commit a navigation.
     const child = document.createElement('iframe');
     child.src = '/nocontent';
     document.body.appendChild(child);

     // Without the fix to crbug.com/1111735, the following will lead to a
     // renderer kill.
     const childDocument = child.contentDocument;
     const myFrame = childDocument.createElement('iframe');
     myFrame.trustToken = JSON.stringify({
       type: 'send-redemption-record',
       issuers: ['https://issuer.example']
     });
     myFrame.src = '/title1.html'; // arbitrary URL, no need for handling logic
     childDocument.body.appendChild(myFrame);
   };

   window.onload = createChildAndExecuteSigningOp;
 </script>
	<!DOCTYPE html>
	<meta charset="utf-8">

	<script>
	"use strict";
	const createChildAndExecuteSigningOp = function() {
	// Assuming the /nocontent URL is handled by a server returning HTTP 204,
	// which is the case for EmbeddedTestServers using the default handlers,
	// \|child\| will not commit a navigation.
	const child = document.createElement('iframe');
	child.src = '/nocontent';
	document.body.appendChild(child);

	// Without the fix to crbug.com/1111735, the following will lead to a
	// renderer kill.
	const childDocument = child.contentDocument;
	const myFrame = childDocument.createElement('iframe');
	myFrame.trustToken = JSON.stringify({
	type: 'send-redemption-record',
	issuers: ['https://issuer.example']
	});
	myFrame.src = '/title1.html'; // arbitrary URL, no need for handling logic
	childDocument.body.appendChild(myFrame);
	};

	window.onload = createChildAndExecuteSigningOp;
	</script>