horok/firefox
1
0
Fork 0
Code Activity
firefox/testing/web-platform/tests/partitioned-popins/partitioned-popins.cookies-allowed.tentative.sub.https.window.js
Daniel Baumann 5e9a113729
Adding upstream version 140.0. 
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
2025-06-25 09:37:52 +02:00

51 lines
2.6 KiB
JavaScript
Raw Permalink Blame History

// META: script=/resources/testdriver.js
// META: script=/resources/testdriver-vendor.js
// META: script=/storage-access-api/helpers.js
'use strict';
// Spec: https://explainers-by-googlers.github.io/partitioned-popins/
// Step 1 (main-window) Set up listener to resolve messages as they come in.
// Step 2 (main-window) Open window for other origin.
// Step 3 (other-window) Write first-party cookies and report success.
// Step 4 (main-window) Embed iframe for other origin.
// Step 5 (main-iframe) Write third-party cookies and report success.
// Step 6 (main-window) Open partitioned popin for other origin.
// Step 7 (popin) Check for first-/third-party cookies.
// Step 8 (popin) Report success.
// Step 9 (main-window) Cleanup.
async_test(t => {
const id = String(Math.random());
document.cookie = "FirstPartyStrict=" + id + "; SameSite=Strict; Secure";
document.cookie = "FirstPartyLax=" + id + "; SameSite=Lax; Secure";
document.cookie = "FirstPartyNone=" + id + "; SameSite=None; Secure";
// Step 1
window.addEventListener("message", t.step_func(e => {
switch (e.data.type) {
case 'window-set':
// Step 4
assert_equals(e.data.message, "Set first-party data");
const iframe = document.createElement("iframe");
iframe.src = "https://{{hosts[alt][]}}:{{ports[https][0]}}/partitioned-popins/resources/partitioned-popins.cookies-iframe.html?id="+id;
document.body.appendChild(iframe);
break;
case 'iframe-set':
// Step 6
assert_equals(e.data.message, "Set third-party data");
window.open("https://{{hosts[alt][]}}:{{ports[https][0]}}/partitioned-popins/resources/partitioned-popins.cookies-popin.sub.py?id="+id, '_blank', 'popin');
break;
case 'popin-read':
// Step 9
// We want to see the same behavior a cross-site iframe would have, only SameSite=None available, with the ability to set additional cookies in the popin.
assert_equals(e.data.message, "ReadOnLoad:ThirdPartyNone-,ReadOnFetch:ThirdPartyNone-ThirdPartyNonePopin-,ReadOnDocument:ThirdPartyNone-ThirdPartyNonePopin-,ReadOnFetchAfterRSA:ThirdPartyNone-ThirdPartyNonePopin-ThirdPartyNonePopinAfterRSA-,ReadOnDocumentAfterRSA:ThirdPartyNone-ThirdPartyNonePopin-ThirdPartyNonePopinAfterRSA-");
t.done();
break;
}
}));
MaybeSetStorageAccess("*", "*", "allowed").then(() => {
// Step 2
window.open("https://{{hosts[alt][]}}:{{ports[https][0]}}/partitioned-popins/resources/partitioned-popins.cookies-window.html?id="+id, '_blank', 'popup');
});
}, "Verify Partitioned Popins cookie access when third-party cookie access allowed");
View git blame Copy permalink