зеркало из https://github.com/mozilla/gecko-dev.git
Bug 1680165 [wpt PR 26710] - Make <meta name=referrer content=default> use the default referrer policy, a=testonly
Automatic update from web-platform-tests
Make <meta name=referrer content=default> use the default referrer policy
The HTML meta tag allows one to set a document's referrer policy by
providing values to
<meta rel=referrer content={referrer policy here}>
In addition to all of the referrer policy identifiers (unsafe-url,
no-referrer-when-downgrade, etc), the HTML spec allows a few legacy
values for the "content" attribute:
"never" is treated as if it instead read "no-referrer",
"always" as "unsafe-url",
"origin-when-crossorigin" as "origin-when-cross-origin", and
"default" as "no-referrer-when-downgrade".
This CL incorporates a behavior change proposed in a new spec pull
request https://github.com/whatwg/html/pull/5783, which updates the
"default" meta tag keyword to, instead of being statically mapped to
no-referrer-when-downgrade", cross-reference the actual default policy
value.
It also adds test coverage for all of the legacy keywords by adding new
test cases to wpt/referrer-policy/spec.src.json; the referrer policy
WPTs didn't previously cover this behavior.
Additionally, the CL removes a few now-redundant Blink web tests
covering the behavior that WPTs now verify.
This change is web-visible, but I think it's arguably covered by the
recently shipped change updating the default referrer policy from its
previous value of no-referrer-when-downgrade to a new value of
strict-origin-when-cross-origin. [1] At the time the <meta> behavior was
originally written into the spec, there wasn't an explicit single source
of truth for the "default referrer policy" per se: instead, specs
(Fetch, HTML, and the WebAppSec Referrer Policy spec) individually
defined fallback behavior in "no policy specified" cases by referring
specifically to the "no-referrer-when-downgrade" policy value.
[1]: https://groups.google.com/a/chromium.org/g/blink-dev/c/lqFuqwZDDR8/m/nKPRTc7DAQAJ
Fixed: 1154350
Change-Id: Ifb3bf9aa9f773c64af1a6e79f39511cf1c1bd8fa
Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/2567977
Reviewed-by: Hiroshige Hayashizaki <hiroshige@chromium.org>
Reviewed-by: Jeremy Roman <jbroman@chromium.org>
Commit-Queue: David Van Cleve <davidvc@chromium.org>
Cr-Commit-Position: refs/heads/master@{#833114}
--
wpt-commits: 260262e3293459fed0f73c430100706abdc32a45
wpt-pr: 26710
This commit is contained in:
David Van Cleve
moz-wptsync-bot
Родитель
19c1cc1a98
Коммит
d36628450d
|
|
@ -0,0 +1,107 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,107 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,107 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "never"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,107 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "origin-when-crossorigin"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "iframe"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,83 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="always">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,83 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="default">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,83 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for fetch to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="never">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "omitted",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects omitted for xhr to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,83 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,53 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,203 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="origin-when-crossorigin">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,107 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "always"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-https origin and swap-origin redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,107 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for a-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "a-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for a-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for fetch to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "fetch",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for fetch to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for iframe-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "iframe-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for iframe-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for img-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "img-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for img-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for script-tag to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "script-tag",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for script-tag to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "sharedworker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for sharedworker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-classic",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-classic to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,65 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "worker-module",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for worker-module to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
|
|
@ -0,0 +1,275 @@
|
|||
<!DOCTYPE html>
|
||||
<!-- DO NOT EDIT! Generated by `common/security-features/tools/generate.py --spec referrer-policy/` -->
|
||||
<html>
|
||||
<head>
|
||||
<meta charset="utf-8">
|
||||
<meta name="timeout" content="long">
|
||||
<meta name="referrer" content="no-referrer">
|
||||
<script src="/resources/testharness.js"></script>
|
||||
<script src="/resources/testharnessreport.js"></script>
|
||||
<script src="/common/security-features/resources/common.sub.js"></script>
|
||||
<script src="../../../generic/test-case.sub.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
<script>
|
||||
TestCase(
|
||||
[
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "cross-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to cross-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-http",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-http origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and no-redirect redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "origin",
|
||||
"origin": "same-https",
|
||||
"redirection": "swap-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects origin for xhr to same-https origin and swap-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "keep-origin",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and keep-origin redirection from http context."
|
||||
},
|
||||
{
|
||||
"expectation": "stripped-referrer",
|
||||
"origin": "same-http",
|
||||
"redirection": "no-redirect",
|
||||
"source_context_list": [
|
||||
{
|
||||
"policyDeliveries": [
|
||||
{
|
||||
"deliveryType": "meta",
|
||||
"key": "referrerPolicy",
|
||||
"value": "default"
|
||||
}
|
||||
],
|
||||
"sourceContextType": "srcdoc"
|
||||
}
|
||||
],
|
||||
"source_scheme": "http",
|
||||
"subresource": "xhr",
|
||||
"subresource_policy_deliveries": [],
|
||||
"test_description": "Referrer Policy: Expects stripped-referrer for xhr to same-http origin and no-redirect redirection from http context."
|
||||
}
|
||||
],
|
||||
new SanityChecker()
|
||||
).start();
|
||||
</script>
|
||||
<div id="log"></div>
|
||||
</body>
|
||||
</html>
|
||||
Некоторые файлы не были показаны из-за слишком большого количества измененных файлов Показать больше
Загрузка…
Ссылка в новой задаче