summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/fenced-frame/permission-geolocation.https.html
blob: e9ad53511b2cc52145deb24a89bde315448011e7 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
<!DOCTYPE html>
<title>Test permission of geolocation</title>
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<script src="/resources/testdriver.js"></script>
<script src="/resources/testdriver-vendor.js"></script>
<script src="resources/utils.js"></script>
<script src="/common/utils.js"></script>

<body>

<script>

async function runTest(policy_header_in_primary_page,
                       policy_header_in_fenced_frame_page,
                       allow_attribute_iframe_in_fanced_frame) {
  const permission_geolocation_key = token();
  const pipe_for_policy = 'pipe=header(Permissions-Policy,geolocation=self)';
  const test_runner_url =
      'resources/permission-geolocation-test-runner.html?' +
      (policy_header_in_primary_page ? pipe_for_policy : '');
  let fenced_frame_url_params = [];
  if (policy_header_in_fenced_frame_page) {
    fenced_frame_url_params.push(pipe_for_policy);
  }
  if (allow_attribute_iframe_in_fanced_frame) {
    fenced_frame_url_params.push('load_allow_attribute_iframe=true');
  }
  const fenced_frame_url = 'permission-geolocation-inner.html?' +
      fenced_frame_url_params.join('&');

  const win = window.open(generateURL(test_runner_url,
      [permission_geolocation_key]));
  await new Promise(resolve => {
    win.onload = resolve;
  });

  // Pagehide can be used to detect the document destruction.
  const pagehidePromise = new Promise(resolve => {
    win.onpagehide = resolve;
  });

  await win.runTest(fenced_frame_url);
  win.close();
  await pagehidePromise;
}

promise_test(async t => {
  await runTest(false, false, false);
}, 'geolocation permission is not permitted for fenced frames');

promise_test(async t => {
  await runTest(true, false, false);
}, 'geolocation permission is not permitted for fenced frames, even if a ' +
   '`Permissions-Policy` header is sent on the primary page.');

promise_test(async t => {
  await runTest(false, true, false);
}, 'geolocation permission is not permitted for fenced frames, even if a ' +
   '`Permissions-Policy` header is sent on the fenced frame response.');

promise_test(async t => {
  await runTest(false, false, true);
}, 'geolocation permission is not permitted for fenced frames, even if an ' +
   '`allow` attribute is set for an iframe in the fenced frame.');

promise_test(async t => {
  await runTest(false, true, true);
}, 'geolocation permission is not permitted for fenced frames, even if a ' +
   '`Permissions-Policy` header and an `allow` attribute is set for an iframe' +
   ' in the fenced frame.');
</script>

</body>