1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
|
<!DOCTYPE HTML>
<html>
<head>
<title>WebExtension test</title>
<meta charset="utf-8">
<script src="/tests/SimpleTest/SimpleTest.js"></script>
<script src="/tests/SimpleTest/ExtensionTestUtils.js"></script>
<script type="text/javascript" src="head.js"></script>
<link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css"/>
</head>
<body>
<script type="text/javascript">
"use strict";
add_task(async function test_cookies_incognito_not_allowed() {
let privateExtension = ExtensionTestUtils.loadExtension({
incognitoOverride: "spanning",
async background() {
let window = await browser.windows.create({incognito: true});
browser.test.onMessage.addListener(async () => {
await browser.windows.remove(window.id);
browser.test.sendMessage("done");
});
browser.test.sendMessage("ready");
},
manifest: {
permissions: ["cookies", "*://example.org/"],
},
});
await privateExtension.startup();
await privateExtension.awaitMessage("ready");
async function background() {
const storeId = "firefox-private";
const url = "http://example.org/";
// Getting the wrong storeId will fail, otherwise we should finish the test fine.
browser.cookies.onChanged.addListener(changeInfo => {
let {cookie} = changeInfo;
browser.test.assertTrue(cookie.storeId != storeId, "cookie store is correct");
});
browser.test.onMessage.addListener(async () => {
let stores = await browser.cookies.getAllCookieStores();
let store = stores.find(s => s.incognito);
browser.test.assertTrue(!store, "incognito cookie store should not be available");
browser.test.notifyPass("cookies");
});
await browser.test.assertRejects(
browser.cookies.set({url, name: "test", storeId}),
/Extension disallowed access/,
"API should reject setting cookie");
await browser.test.assertRejects(
browser.cookies.get({url, name: "test", storeId}),
/Extension disallowed access/,
"API should reject getting cookie");
await browser.test.assertRejects(
browser.cookies.getAll({url, storeId}),
/Extension disallowed access/,
"API should reject getting cookie");
await browser.test.assertRejects(
browser.cookies.remove({url, name: "test", storeId}),
/Extension disallowed access/,
"API should reject getting cookie");
await browser.test.assertRejects(
browser.cookies.getAll({url, storeId}),
/Extension disallowed access/,
"API should reject getting cookie");
browser.test.sendMessage("set-cookies");
}
let extension = ExtensionTestUtils.loadExtension({
background,
manifest: {
permissions: ["cookies", "*://example.org/"],
},
});
await extension.startup();
await extension.awaitMessage("set-cookies");
let chromeScript = SpecialPowers.loadChromeScript(() => {
/* eslint-env mozilla/chrome-script */
Services.cookies.add("example.org", "/", "public", `foo${Math.random()}`,
false, false, false, Number.MAX_SAFE_INTEGER, {},
Ci.nsICookie.SAMESITE_NONE);
Services.cookies.add("example.org", "/", "private", `foo${Math.random()}`,
false, false, false, Number.MAX_SAFE_INTEGER, {privateBrowsingId: 1},
Ci.nsICookie.SAMESITE_NONE);
});
extension.sendMessage("test-cookie-store");
await extension.awaitFinish("cookies");
await extension.unload();
privateExtension.sendMessage("close");
await privateExtension.awaitMessage("done");
await privateExtension.unload();
chromeScript.destroy();
});
</script>
</body>
</html>
|