1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
|
"use strict";
const { HttpServer } = ChromeUtils.importESModule(
"resource://testing-common/httpd.sys.mjs"
);
const sentCookieVal = "foo=bar";
const responseBody = "response body";
ChromeUtils.defineLazyGetter(this, "baseURL", function () {
return "http://localhost:" + httpServer.identity.primaryPort;
});
const preRedirectPath = "/528292/pre-redirect";
ChromeUtils.defineLazyGetter(this, "preRedirectURL", function () {
return baseURL + preRedirectPath;
});
const postRedirectPath = "/528292/post-redirect";
ChromeUtils.defineLazyGetter(this, "postRedirectURL", function () {
return baseURL + postRedirectPath;
});
var httpServer = null;
var receivedCookieVal = null;
function preRedirectHandler(metadata, response) {
response.setStatusLine(metadata.httpVersion, 302, "Found");
response.setHeader("Location", postRedirectURL, false);
}
function postRedirectHandler(metadata, response) {
receivedCookieVal = metadata.getHeader("Cookie");
response.setHeader("Content-Type", "text/plain");
response.bodyOutputStream.write(responseBody, responseBody.length);
}
function inChildProcess() {
return Services.appinfo.processType != Ci.nsIXULRuntime.PROCESS_TYPE_DEFAULT;
}
add_task(async () => {
// Start the HTTP server.
httpServer = new HttpServer();
httpServer.registerPathHandler(preRedirectPath, preRedirectHandler);
httpServer.registerPathHandler(postRedirectPath, postRedirectHandler);
httpServer.start(-1);
if (!inChildProcess()) {
// Disable third-party cookies in general.
Services.prefs.setIntPref("network.cookie.cookieBehavior", 1);
Services.prefs.setBoolPref(
"network.cookieJarSettings.unblocked_for_testing",
true
);
}
// Set up a channel with forceAllowThirdPartyCookie set to true. We'll use
// the channel both to set a cookie and then to load the pre-redirect URI.
var chan = NetUtil.newChannel({
uri: preRedirectURL,
loadUsingSystemPrincipal: true,
})
.QueryInterface(Ci.nsIHttpChannel)
.QueryInterface(Ci.nsIHttpChannelInternal);
chan.forceAllowThirdPartyCookie = true;
// Set a cookie on one of the URIs. It doesn't matter which one, since
// they're both from the same host, which is enough for the cookie service
// to send the cookie with both requests.
var postRedirectURI = Services.io.newURI(postRedirectURL);
await CookieXPCShellUtils.setCookieToDocument(
postRedirectURI.spec,
sentCookieVal
);
// Load the pre-redirect URI.
await new Promise(resolve => {
chan.asyncOpen(new ChannelListener(resolve, null));
});
Assert.equal(receivedCookieVal, sentCookieVal);
httpServer.stop(do_test_finished);
});
|