summaryrefslogtreecommitdiffstats
path: root/dom/security/test/csp/file_redirect_report.sjs
diff options
context:
space:
mode:
Diffstat (limited to 'dom/security/test/csp/file_redirect_report.sjs')
-rw-r--r--dom/security/test/csp/file_redirect_report.sjs17
1 files changed, 17 insertions, 0 deletions
diff --git a/dom/security/test/csp/file_redirect_report.sjs b/dom/security/test/csp/file_redirect_report.sjs
new file mode 100644
index 0000000000..9cc7e65486
--- /dev/null
+++ b/dom/security/test/csp/file_redirect_report.sjs
@@ -0,0 +1,17 @@
+// https://bugzilla.mozilla.org/show_bug.cgi?id=650386
+// This SJS file serves as CSP violation report target
+// and issues a redirect, to make sure the browser does not post to the target
+// of the redirect, per CSP spec.
+// This handles 301, 302, 303 and 307 redirects. The HTTP status code
+// returned/type of redirect to do comes from the query string
+// parameter
+function handleRequest(request, response) {
+ response.setHeader("Cache-Control", "no-cache", false);
+
+ var redirect = request.queryString;
+
+ var loc = "http://example.com/some/fake/path";
+ response.setStatusLine("1.1", redirect, "Found");
+ response.setHeader("Location", loc, false);
+ return;
+}
generated by cgit v1.2.3 (git 2.39.1) at 2024-06-08 08:26:28 +0000