summaryrefslogtreecommitdiffstats
path: root/toolkit/components/extensions/test/xpcshell/test_ext_contentscript_permissions_change.js
diff options
context:
space:
mode:
Diffstat (limited to 'toolkit/components/extensions/test/xpcshell/test_ext_contentscript_permissions_change.js')
-rw-r--r--toolkit/components/extensions/test/xpcshell/test_ext_contentscript_permissions_change.js104
1 files changed, 104 insertions, 0 deletions
diff --git a/toolkit/components/extensions/test/xpcshell/test_ext_contentscript_permissions_change.js b/toolkit/components/extensions/test/xpcshell/test_ext_contentscript_permissions_change.js
new file mode 100644
index 0000000000..842994858e
--- /dev/null
+++ b/toolkit/components/extensions/test/xpcshell/test_ext_contentscript_permissions_change.js
@@ -0,0 +1,104 @@
+"use strict";
+
+Services.prefs.setBoolPref("extensions.manifestV3.enabled", true);
+
+const server = createHttpServer({ hosts: ["example.com", "example.net"] });
+server.registerDirectory("/data/", do_get_file("data"));
+
+const HOSTS = ["http://example.com/*", "http://example.net/*"];
+
+const { ExtensionPermissions } = ChromeUtils.importESModule(
+ "resource://gre/modules/ExtensionPermissions.sys.mjs"
+);
+
+function grantOptional({ extension: ext }, origins) {
+ return ExtensionPermissions.add(ext.id, { origins, permissions: [] }, ext);
+}
+
+function revokeOptional({ extension: ext }, origins) {
+ return ExtensionPermissions.remove(ext.id, { origins, permissions: [] }, ext);
+}
+
+function makeExtension(id, content_scripts) {
+ return ExtensionTestUtils.loadExtension({
+ manifest: {
+ manifest_version: 3,
+
+ browser_specific_settings: { gecko: { id } },
+ content_scripts,
+
+ permissions: ["scripting"],
+ host_permissions: HOSTS,
+ },
+ files: {
+ "cs.js"() {
+ browser.test.log(`${browser.runtime.id} script on ${location.host}`);
+ browser.test.sendMessage(`${browser.runtime.id}_on_${location.host}`);
+ },
+ },
+ background() {
+ browser.test.onMessage.addListener(async (msg, origins) => {
+ browser.test.log(`${browser.runtime.id} registering content scripts`);
+ await browser.scripting.registerContentScripts([
+ {
+ id: "cs1",
+ persistAcrossSessions: false,
+ matches: origins,
+ js: ["cs.js"],
+ },
+ ]);
+ browser.test.sendMessage("done");
+ });
+ },
+ });
+}
+
+// Test that content scripts in MV3 enforce origin permissions.
+// Test granted optional permissions are available in newly spawned processes.
+add_task(async function test_contentscript_mv3_permissions() {
+ // Alpha lists content scripts in the manifest.
+ let alpha = makeExtension("alpha@test", [{ matches: HOSTS, js: ["cs.js"] }]);
+ let beta = makeExtension("beta@test");
+
+ await grantOptional(alpha, HOSTS);
+ await grantOptional(beta, ["http://example.net/*"]);
+ info("Granted initial permissions for both.");
+
+ await alpha.startup();
+ await beta.startup();
+
+ // Beta registers same content scripts using the scripting api.
+ beta.sendMessage("register", HOSTS);
+ await beta.awaitMessage("done");
+
+ // Only Alpha has origin permissions for example.com.
+ {
+ let page = await ExtensionTestUtils.loadContentPage(
+ `http://example.com/data/file_sample.html`
+ );
+ info("Loaded a page from example.com.");
+
+ await alpha.awaitMessage("alpha@test_on_example.com");
+ info("Got a message from alpha@test on example.com.");
+ await page.close();
+ }
+
+ await revokeOptional(alpha, ["http://example.net/*"]);
+ info("Revoked example.net permissions from Alpha.");
+
+ // Now only Beta has origin permissions for example.net.
+ {
+ let page = await ExtensionTestUtils.loadContentPage(
+ `http://example.net/data/file_sample.html`
+ );
+ info("Loaded a page from example.net.");
+
+ await beta.awaitMessage("beta@test_on_example.net");
+ info("Got a message from beta@test on example.net.");
+ await page.close();
+ }
+
+ info("Done, unloading Alpha and Beta.");
+ await beta.unload();
+ await alpha.unload();
+});
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-10 15:39:37 +0000