1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
|
<!DOCTYPE html>
<meta charset="utf-8"/>
<meta name="timeout" content="long">
<meta name="help" href="https://github.com/WICG/CHIPS#chips-cookies-having-independent-partitioned-state">
<title>Test partitioned cookies</title>
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script src="/common/get-host-info.sub.js"></script>
<script src="/cookies/resources/cookie-helper.sub.js"></script>
<script src="/cookies/partitioned-cookies/resources/test-helpers.js"></script>
<body>
<script>
document.body.onload = async () => {
// First, the test sets a SameSite=None;Partitioned; cookie.
const attributes = "Secure;Path=/;SameSite=None;Partitioned";
const httpCookieName = "__Host-pchttp";
await credFetch(
`${self.origin}/cookies/resources/set.py?${httpCookieName}=foobar;${
attributes}`);
// Set another partitioned cookie using document.cookie.
const domCookieName = "__Host-pcdom";
document.cookie = `${domCookieName}=foobar;${attributes}`;
// Set another partitioned cookie using the CookieStore API, if supported.
if (window.cookieStore) {
const cookieStoreCookieName = "__Host-pccookiestore";
await cookieStore.set({
name: cookieStoreCookieName,
value: "foobar",
path: "/",
sameSite: "none",
partitioned: true,
});
}
const cookieNames = getCookieNames();
// Verify that the cookies are sent in requests from this top-level site.
testHttpPartitionedCookies({
origin: self.origin,
cookieNames,
expectsCookie: true,
});
// Verify that the cookies are exposed to the DOM on this top-level site.
testDomPartitionedCookies({
cookieNames,
expectsCookie: true,
});
testCookieStorePartitionedCookies({
cookieNames,
expectsCookie: true,
});
// Open a cross-site window which will make a request to this window's origin.
// If partitioned cookies are disabled, then the cookies set above will still
// be accessible.
// If partitioned cookies are enabled, then the cookies should not be
// accessible to their origin in a window with a different top-level site.
const crossSiteUrl = new URL(
`./resources/partitioned-cookies-cross-site-window.html?origin=${
encodeURIComponent(self.origin)}`,
get_host_info().HTTPS_NOTSAMESITE_ORIGIN + self.location.pathname);
const popup = window.open(crossSiteUrl);
fetch_tests_from_window(popup);
};
</script>
</body>
|
