summaryrefslogtreecommitdiffstats
path: root/tests/auto/widgets/origins/resources/mixedSchemesWithCsp.html
blob: ad7cbeeb75c28c4c901033758a2cd7c0d51d2697 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
<!DOCTYPE html>
<html>
    <head>
        <meta http-equiv="Content-Security-Policy" content="frame-src 'none'">
        <title>Mixed</title>
        <script>
         var result;
         var canary;

         function setIFrameUrl(url) {
             result = undefined;
             canary = undefined;
             document.getElementById("iframe").setAttribute("src", url);
             // Early fire is OK unless the test is expecting cannotLoad.
             // If timeout is too short then a false positive is possible.
             setTimeout(() => { result = result || "cannotLoad"; }, 500);
         }

         addEventListener("load", function() {
             document.getElementById("iframe").addEventListener("load", function() {
                 if (canary && window[0].canary)
                     result = "canLoadAndAccess";
                 else
                     result = "canLoadButNotAccess";
             });
         });
        </script>
    </head>
    <body>
        <iframe id="iframe"></iframe>
    </body>
</html>