Google Git
Sign in
chromium / external / w3c / web-platform-tests / refs/tags/merge_pr_25225^! / .
commit792570a8eca832f7569b34e5b467dc613fb525cf[log] [tgz]
authorYutaka Hirano <yhirano@chromium.org>Thu Aug 27 09:23:54 2020
committerBlink WPT Bot <blink-w3c-test-autoroller@chromium.org>Thu Aug 27 10:05:14 2020
tree3c2b809949c826cea360e159115a9d39094fcda9
parenta08ccea0ab64c7139447f9863817ad13375467e0 [diff]
Augment COEP violation report

This implements https://github.com/whatwg/html/pull/5848.

 - Add "blockedURL" (we'll keep "blocked-url" for some time).
 - Add "disposition".
 - Add "destination".

There are subtle bugs in WPTs
(https://github.com/web-platform-tests/wpt/pull/25177). Fix them.

Bug: 1119676
Change-Id: I9b83f18d9881b2742bafd88405b57645a67cac49
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2373970
Reviewed-by: Kinuko Yasuda <kinuko@chromium.org>
Reviewed-by: Makoto Shimazu <shimazu@chromium.org>
Reviewed-by: Domenic Denicola <domenic@chromium.org>
Commit-Queue: Yutaka Hirano <yhirano@chromium.org>
Cr-Commit-Position: refs/heads/master@{#802161}

diff --git a/html/cross-origin-embedder-policy/reporting-subresource-corp.https.html b/html/cross-origin-embedder-policy/reporting-subresource-corp.https.html
index b7571d0..ad8a8e9 100644
--- a/html/cross-origin-embedder-policy/reporting-subresource-corp.https.html
+++ b/html/cross-origin-embedder-policy/reporting-subresource-corp.https.html

@@ -185,7 +185,7 @@
     }
   });
   observer.observe();
-  const url = `${REMOTE_ORIGIN}$/common/utils.js`;
+  const url = `${REMOTE_ORIGIN}/common/utils.js`;
   const script = frame.contentDocument.createElement('script');
   script.src = url;
   frame.contentDocument.body.appendChild(script);

diff --git a/html/cross-origin-embedder-policy/reporting-to-endpoint.https.html b/html/cross-origin-embedder-policy/reporting-to-endpoint.https.html
index d40f437..02c719d 100644
--- a/html/cross-origin-embedder-policy/reporting-to-endpoint.https.html
+++ b/html/cross-origin-embedder-policy/reporting-to-endpoint.https.html

@@ -44,7 +44,7 @@
 pollReports('endpoint', reports);
 pollReports('report-only-endpoint', reportsForReportOnly);
 
-function checkCorpReportExistence(reports, blockedUrl, contextUrl, disposition) {
+function checkCorpReportExistence(reports, blockedUrl, contextUrl, destination, disposition) {
   blockedUrl = new URL(blockedUrl, location).href;
   contextUrl = new URL(contextUrl, location).href;
   for (const report of reports) {
@@ -54,7 +54,7 @@
     }
     if (report.body.blockedURL === blockedUrl &&
         report.body.disposition === disposition) {
-      assert_equals(report.body.destination, '');
+      assert_equals(report.body.destination, destination);
       return;
     }
   }
@@ -97,9 +97,9 @@
     // Wait 3 seconds for reports to settle.
     await wait(3000);
 
-    checkCorpReportExistence(reports, url, iframe.src, 'enforce');
+    checkCorpReportExistence(reports, url, iframe.src, '', 'enforce');
     checkCorpReportExistence(
-      reportsForReportOnly, url, iframe.src, 'reporting');
+      reportsForReportOnly, url, iframe.src, '', 'reporting');
 
     t.done();
   } catch (e) {
@@ -134,9 +134,9 @@
     // Wait 3 seconds for reports to settle.
     await wait(3000);
 
-    checkCorpReportExistence(reports, url, iframe.src, 'enforce');
+    checkCorpReportExistence(reports, url, iframe.src, 'iframe', 'enforce');
     checkCorpReportExistence(
-      reportsForReportOnly, url, iframe.src, 'reporting');
+      reportsForReportOnly, url, iframe.src, 'iframe', 'reporting');
 
     t.done();
   } catch (e) {