blob: 34dfe40e2352eccf51b4c7b970c6cfe98876713e (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
|
// Custom *.sjs file specifically for the needs of Bug 1454242
const WIN = `
<html>
<body>
<script type="application/javascript">
let newWin = window.open("http://mochi.test:8888/tests/dom/security/test/general/file_same_site_cookies_toplevel_set_cookie.sjs?loadWinAndSetCookie");
newWin.onload = function() {
newWin.close();
}
</script>
</body>
</html>`;
const DUMMY_WIN = `
<html>
<body>
just a dummy window that sets a same-site=lax cookie
<script type="application/javascript">
window.opener.opener.postMessage({value: 'testSetupComplete'}, '*');
</script>
</body>
</html>`;
const FRAME = `
<html>
<body>
<script type="application/javascript">
let cookie = document.cookie;
// now reset the cookie for the next test
document.cookie = "myKey=;" + "expires=Thu, 01 Jan 1970 00:00:00 GMT";
window.parent.postMessage({value: cookie}, 'http://mochi.test:8888');
</script>
</body>
</html>`;
const SAME_ORIGIN = "http://mochi.test:8888/";
const CROSS_ORIGIN = "http://example.com/";
const PATH =
"tests/dom/security/test/general/file_same_site_cookies_redirect.sjs";
function handleRequest(request, response) {
// avoid confusing cache behaviors
response.setHeader("Cache-Control", "no-cache", false);
if (request.queryString === "loadWin") {
response.write(WIN);
return;
}
if (request.queryString === "loadWinAndSetCookie") {
response.setHeader(
"Set-Cookie",
"myKey=laxSameSiteCookie; samesite=lax",
true
);
response.write(DUMMY_WIN);
return;
}
if (request.queryString === "checkCookie") {
response.write(FRAME);
return;
}
// we should never get here, but just in case return something unexpected
response.write("D'oh");
}
|
