summaryrefslogtreecommitdiffstats
path: root/dom/html/test/file_iframe_sandbox_a_if15.html
blob: 9c5a003d7c0f7c8ea96eb5927c37df343fe41987 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
<!DOCTYPE HTML>
<html>
<head>
  <meta charset="utf-8">
  <title>Test for Bug 886262</title>
  <link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css"/>
</head>

<script>
function doStuff() {
  try {
    window.parent.parent.parent.ok_wrapper(false, "an object inside a frame or object inside a sandboxed iframe should NOT be same origin with the iframe's parent");
  }
  catch (e) {
    window.parent.parent.parent.postMessage({ok: true, desc: "an object inside a frame or object inside a sandboxed iframe is not same origin with the iframe's parent"}, "*");
  }

  // Check that sandboxed forms browsing context flag NOT set by attempting to submit a form.
  document.getElementById('a_form').submit();
}
</script>

<body onload='doStuff()'>
  I'm a &lt;object&gt; inside a &lt;frame&gt; or &lt;object&gt; inside an iframe which is sandboxed with 'allow-scripts allow-forms'

  <form method="get" action="file_iframe_sandbox_form_pass.html" id="a_form">
    First name: <input type="text" name="firstname">
    Last name: <input type="text" name="lastname">
    <input type="submit" id="a_button">
  </form>
</body>
</html>