File: test_websocket_mixed_content_opener.html

package info (click to toggle)
firefox 143.0.3-1
links: PTS, VCS
area: main
in suites: sid
size: 4,617,328 kB
sloc: cpp: 7,478,492; javascript: 6,417,157; ansic: 3,720,058; python: 1,396,372; xml: 627,523; asm: 438,677; java: 186,156; sh: 63,477; makefile: 19,171; objc: 13,059; perl: 12,983; yacc: 4,583; cs: 3,846; pascal: 3,405; lex: 1,720; ruby: 1,003; exp: 762; php: 436; lisp: 258; awk: 247; sql: 66; sed: 53; csh: 10
file content (159 lines) | stat: -rw-r--r-- 5,239 bytes
parent folder | download | duplicates (17)
<!DOCTYPE HTML>
<html>
<head>
  <meta http-equiv="Content-Type" content="text/html;charset=UTF-8"></meta>
  <title>WebSocket mixed content opener tests - load secure and insecure websockets in secure and insecure iframes through secure and insecure opened windows</title>
  <script src="/tests/SimpleTest/SimpleTest.js"></script>

  <script type="text/javascript" src="websocket_helpers.js"></script>
  <link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css" />
</head>
<body>
<div id="container"></div>
<script class="testbody" type="text/javascript">
function runTest({ name, url, expect, httpsFirst = false }) {
  return new Promise((resolve) => {
    SpecialPowers.pushPrefEnv({
      set: [["dom.security.https_first", httpsFirst]],
    }).then(() => {
      let win = window.open(
        url,
        "_blank",
        "location=yes,height=570,width=520,scrollbars=yes,status=yes"
      );
      onmessage = function (e) {
        is(e.data, expect, `${name} - Unexpected message`);
        win.close();
        SpecialPowers.flushPrefEnv().then(() => {
          resolve();
        });
      };
    });
  });
}

async function testWebSockets() {
  await runTest({
    name: "testSecureWindowWSS",
    url: "https://example.com/tests/dom/websocket/tests/window_websocket_wss.html",
    expect: "WS onopen",
  });

  await runTest({
    name: "testInsecureWindowWSS",
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html",
    expect: "WS onopen",
  });

  // ws://URI cannot be used when loaded over https
  await runTest({
    name: "testSecureWindowWS",
    url: "https://example.com/tests/dom/websocket/tests/window_websocket_wss.html?insecure",
    expect: "SecurityError",
  });

  await runTest({
    name: "testInsecureWindowWS",
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?insecure",
    expect: "WS onopen",
  });

  // ws://URI cannot be used when loaded over https
  await runTest({
    name: "testUpgradedWindowWS",
    httpsFirst: true,
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?insecure",
    expect: "SecurityError",
  });

  await runTest({
    name: "testSecureWindowSecureIframeWSS",
    url: "https://example.com/tests/dom/websocket/tests/window_websocket_wss.html?https_iframe_wss",
    expect: "WS onopen",
  });

  // ws://URI cannot be used when loaded over https
  await runTest({
    name: "testSecureWindowSecureIframeWS",
    url: "https://example.com/tests/dom/websocket/tests/window_websocket_wss.html?https_iframe_ws",
    expect: "SecurityError",
  });

  // http iframe cannot be loaded in secure context (mixed content)
  await runTest({
    name: "testSecureWindowInsecureIframeWSS",
    url: "https://example.com/tests/dom/websocket/tests/window_websocket_wss.html?http_iframe_wss",
    expect: "Error - iframe not loaded",
  });

  // http iframe cannot be loaded in secure context (mixed content)
  await runTest({
    name: "testSecureWindowInsecureIframeWS",
    url: "https://example.com/tests/dom/websocket/tests/window_websocket_wss.html?http_iframe_ws",
    expect: "Error - iframe not loaded",
  });

  await runTest({
    name: "testInsecureWindowSecureIframeWSS",
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?https_iframe_wss",
    expect: "WS onopen",
  });

  // ws://URI cannot be used when loaded from an https iframe
  await runTest({
    name: "testInsecureWindowSecureIframeWS",
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?https_iframe_ws",
    expect: "SecurityError",
  });

  await runTest({
    name: "testInsecureWindowInsecureIframeWSS",
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?http_iframe_wss",
    expect: "WS onopen",
  });

  await runTest({
    name: "testInsecureWindowInsecureIframeWS",
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?http_iframe_ws",
    expect: "WS onopen",
  });

  await runTest({
    name: "testUpgradedWindowSecureIframeWSS",
    httpsFirst: true,
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?https_iframe_wss",
    expect: "WS onopen",
  });

  // ws://URI cannot be used when loaded from an https iframe
  await runTest({
    name: "testUpgradedWindowSecureIframeWS",
    httpsFirst: true,
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?https_iframe_ws",
    expect: "SecurityError",
  });

  // http iframe cannot be loaded in secure context (mixed content)
  await runTest({
    name: "testUpgradedWindowInsecureIframeWSS",
    httpsFirst: true,
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?http_iframe_wss",
    expect: "Error - iframe not loaded",
  });

  // http iframe cannot be loaded in secure context (mixed content)
  await runTest({
    name: "testUpgradedWindowInsecureIframeWS",
    httpsFirst: true,
    url: "http://example.com/tests/dom/websocket/tests/window_websocket_wss.html?http_iframe_ws",
    expect: "Error - iframe not loaded",
  });

  SimpleTest.finish();
}

SimpleTest.waitForExplicitFinish();
testWebSockets();
</script>
</body>
</html>