html/semantics/scripting-1/the-script-element/module/dynamic-import/dynamic-imports-credentials.sub.html - external/w3c/web-platform-tests - Git at Google

 <!DOCTYPE html>
 <meta charset="utf-8">
 <script src="/resources/testharness.js"></script>
 <script src="/resources/testharnessreport.js"></script>
 <script src="/common/get-host-info.sub.js"></script>

 <script type="text/javascript">
 host_info = get_host_info();

 document.cookie = 'same=1';

 const setCookiePromise = fetch(
     'http://{{domains[www2]}}:{{ports[http][0]}}/cookies/resources/set-cookie.py?name=cross&path=/html/semantics/scripting-1/the-script-element/module/',
     {
       mode: 'no-cors',
       credentials: 'include',
     });

 const windowLoadPromise = new Promise(resolve => {
   window.addEventListener('load', () => {
     resolve();
   });
 });

 promise_test(t => {
   const iframe = document.createElement('iframe');

   return Promise.all([setCookiePromise, windowLoadPromise]).then(() => {
     const messagePromise = new Promise(resolve => {
       window.addEventListener('message', event => {
         resolve();
       });
     });

     iframe.src = '../resources/dynamic-import-credentials-iframe.sub.html';
     document.body.appendChild(iframe);

     return messagePromise;
   }).then(() => {
     const w = iframe.contentWindow;

     assert_equals(w.sameOriginNoneDynamicDescendant, 'found',
                   'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is not specified and the target is same-origin');
     assert_equals(w.sameOriginAnonymousDynamicDescendant, 'found',
                   'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is specified with "anonymous" as its value and the target is same-origin');
     assert_equals(w.sameOriginUseCredentialsDynamicDescendant, 'found',
                   'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is specified with "use-credentials" as its value and the target is same-origin');
     assert_equals(w.crossOriginNoneDynamicDescendant, 'not found',
                   'Dynamic descendant modules should not be loaded with the credentials when the crossOrigin attribute is not specified and the target is cross-origin');
     assert_equals(w.crossOriginAnonymousDynamicDescendant, 'not found',
                   'Dynamic descendant modules should not be loaded with the credentials when the crossOrigin attribute is specified with "anonymous" as its value and the target is cross-origin');
     assert_equals(w.crossOriginUseCredentialsDynamicDescendant, 'found',
                   'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is specified with "use-credentials" as its value and the target is cross-origin');
 });
 }, 'Dynamic imports should be loaded with or without the credentials based on the same-origin-ness and the parent script\'s crossOrigin attribute');
 </script>
 <body>
 </body>
	<!DOCTYPE html>
	<meta charset="utf-8">
	<script src="/resources/testharness.js"></script>
	<script src="/resources/testharnessreport.js"></script>
	<script src="/common/get-host-info.sub.js"></script>

	<script type="text/javascript">
	host_info = get_host_info();

	document.cookie = 'same=1';

	const setCookiePromise = fetch(
	'http://{{domains[www2]}}:{{ports[http][0]}}/cookies/resources/set-cookie.py?name=cross&path=/html/semantics/scripting-1/the-script-element/module/',
	{
	mode: 'no-cors',
	credentials: 'include',
	});

	const windowLoadPromise = new Promise(resolve => {
	window.addEventListener('load', () => {
	resolve();
	});
	});

	promise_test(t => {
	const iframe = document.createElement('iframe');

	return Promise.all([setCookiePromise, windowLoadPromise]).then(() => {
	const messagePromise = new Promise(resolve => {
	window.addEventListener('message', event => {
	resolve();
	});
	});

	iframe.src = '../resources/dynamic-import-credentials-iframe.sub.html';
	document.body.appendChild(iframe);

	return messagePromise;
	}).then(() => {
	const w = iframe.contentWindow;

	assert_equals(w.sameOriginNoneDynamicDescendant, 'found',
	'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is not specified and the target is same-origin');
	assert_equals(w.sameOriginAnonymousDynamicDescendant, 'found',
	'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is specified with "anonymous" as its value and the target is same-origin');
	assert_equals(w.sameOriginUseCredentialsDynamicDescendant, 'found',
	'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is specified with "use-credentials" as its value and the target is same-origin');
	assert_equals(w.crossOriginNoneDynamicDescendant, 'not found',
	'Dynamic descendant modules should not be loaded with the credentials when the crossOrigin attribute is not specified and the target is cross-origin');
	assert_equals(w.crossOriginAnonymousDynamicDescendant, 'not found',
	'Dynamic descendant modules should not be loaded with the credentials when the crossOrigin attribute is specified with "anonymous" as its value and the target is cross-origin');
	assert_equals(w.crossOriginUseCredentialsDynamicDescendant, 'found',
	'Dynamic descendant modules should be loaded with the credentials when the crossOrigin attribute is specified with "use-credentials" as its value and the target is cross-origin');
	});
	}, 'Dynamic imports should be loaded with or without the credentials based on the same-origin-ness and the parent script\'s crossOrigin attribute');
	</script>
	<body>
	</body>