mozilla
/
gecko-dev
зеркало из https://github.com/mozilla/gecko-dev.git
1
0
Форкнуть 0
Код Задачи Пакеты Проекты Релизы Вики Активность
gecko-dev/dom/security/test/csp
История
Andrea Marchesini fd049cea10 Bug 1492059 - x-frame-options blocking should use NullPrincipal when loading about:blank, r=ckerschb 2018-09-18 16:57:04 +02:00
..
Ahem.ttf Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
browser.ini
browser_manifest-src-override-default-src.js Bug 1431533: Part 5a - Auto-rewrite code to use ChromeUtils import methods. r=florian 2018-01-29 15:20:18 -08:00
browser_test_web_manifest.js Bug 1431533: Part 5a - Auto-rewrite code to use ChromeUtils import methods. r=florian 2018-01-29 15:20:18 -08:00
browser_test_web_manifest_mixed_content.js Bug 1431533: Part 5a - Auto-rewrite code to use ChromeUtils import methods. r=florian 2018-01-29 15:20:18 -08:00
file_CSP.css
file_CSP.sjs
file_allow_https_schemes.html
file_base_uri_server.sjs
file_blob_data_schemes.html
file_block_all_mcb.sjs
file_block_all_mixed_content_frame_navigation1.html
file_block_all_mixed_content_frame_navigation2.html
file_bug663567.xsl
file_bug663567_allows.xml
file_bug663567_allows.xml^headers^
file_bug663567_blocks.xml
file_bug663567_blocks.xml^headers^
file_bug802872.html
file_bug802872.html^headers^
file_bug802872.js
file_bug802872.sjs
file_bug836922_npolicies.html
file_bug836922_npolicies.html^headers^
file_bug836922_npolicies_ro_violation.sjs
file_bug836922_npolicies_violation.sjs
file_bug885433_allows.html
file_bug885433_allows.html^headers^
file_bug885433_blocks.html
file_bug885433_blocks.html^headers^
file_bug886164.html
file_bug886164.html^headers^
file_bug886164_2.html
file_bug886164_2.html^headers^
file_bug886164_3.html
file_bug886164_3.html^headers^
file_bug886164_4.html
file_bug886164_4.html^headers^
file_bug886164_5.html
file_bug886164_5.html^headers^
file_bug886164_6.html
file_bug886164_6.html^headers^
file_bug888172.html
file_bug888172.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_bug909029_none.html
file_bug909029_none.html^headers^
file_bug909029_star.html
file_bug909029_star.html^headers^
file_bug910139.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_bug910139.xml
file_bug910139.xsl
file_bug941404.html
file_bug941404_xhr.html
file_bug941404_xhr.html^headers^
file_bug1229639.html
file_bug1229639.html^headers^
file_bug1312272.html
file_bug1312272.html^headers^
file_bug1312272.js
file_child-src_iframe.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
file_child-src_inner_frame.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
file_child-src_service_worker.html
file_child-src_service_worker.js
file_child-src_shared_worker-redirect.html
file_child-src_shared_worker.html
file_child-src_shared_worker.js
file_child-src_shared_worker_data.html
file_child-src_worker-redirect.html Bug 1288768 - Better error reporting for network errors in workers - WPT, r=bz 2017-01-28 15:40:08 +01:00
file_child-src_worker.html
file_child-src_worker.js
file_child-src_worker_data.html
file_connect-src-fetch.html
file_connect-src.html
file_data-uri_blocked.html
file_data-uri_blocked.html^headers^ Bug 1473218 - Implement report-sample support for CSP directives, r=ckerschb 2018-07-06 08:01:49 +02:00
file_data_csp_inheritance.html Bug 1387811 - Follow up for Test within Bug 1381761: CSP JSON is never null, hence it's better to check actual contents of JSON for testing. r=dveditz 2017-08-06 11:37:09 +02:00
file_data_csp_merge.html Bug 1386183 - Test Meta CSP on data: URI iframe to be merged with CSP from including context. r=dveditz 2017-08-03 10:52:27 +02:00
file_data_doc_ignore_meta_csp.html Bug 1382869: Test data document should ignore meta csp. r=bz 2017-08-08 15:38:22 +02:00
file_doccomment_meta.html
file_docwrite_meta.css
file_docwrite_meta.html
file_docwrite_meta.js
file_dual_header_testserver.sjs
file_empty_directive.html Bug 1439425 - Ignore empty CSP directives. r=ckerschb 2018-03-06 18:48:26 -08:00
file_empty_directive.html^headers^ Bug 1439425 - Ignore empty CSP directives. r=ckerschb 2018-03-06 18:48:26 -08:00
file_evalscript_main.html
file_evalscript_main.html^headers^
file_evalscript_main.js
file_evalscript_main_allowed.html
file_evalscript_main_allowed.html^headers^
file_evalscript_main_allowed.js
file_fontloader.sjs
file_fontloader.woff
file_form-action.html
file_form_action_server.sjs
file_frame_ancestors_ro.html Bug 1380755 - Examine & report on frame-ancestors CSP in report-only mode. r=ckerschb 2017-07-17 14:19:57 -04:00
file_frame_ancestors_ro.html^headers^ Bug 1380755 - Examine & report on frame-ancestors CSP in report-only mode. r=ckerschb 2017-07-17 14:19:57 -04:00
file_frame_src.js Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frame_src_child_governs.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frame_src_frame_governs.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frame_src_inner.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frameancestors.sjs
file_frameancestors_main.html
file_frameancestors_main.js Bug 1367531: Update CSP frame ancestors test to make sure paths are ignored. r=dveditz 2017-06-06 09:12:32 +02:00
file_frameancestors_userpass.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_a.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_b.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_c.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_c.html^headers^ Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_d.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_d.html^headers^ Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_hash_source.html
file_hash_source.html^headers^
file_iframe_sandbox_document_write.html
file_iframe_sandbox_srcdoc.html Bug 1073952: tests for iframe sandbox srcdoc and data URIs with CSP r=ckerschb,Tomcat 2017-01-30 14:12:15 +01:00
file_iframe_sandbox_srcdoc.html^headers^ Bug 1073952: tests for iframe sandbox srcdoc and data URIs with CSP r=ckerschb,Tomcat 2017-01-30 14:12:15 +01:00
file_iframe_srcdoc.sjs Bug 1073952: tests for iframe sandbox srcdoc and data URIs with CSP r=ckerschb,Tomcat 2017-01-30 14:12:15 +01:00
file_ignore_unsafe_inline.html
file_ignore_unsafe_inline_multiple_policies_server.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_ignore_xfo.html Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_ignore_xfo.html^headers^ Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_image_nonce.html Bug 1355801: Nonce should not apply to images tests. r=dveditz 2017-05-10 08:53:27 +02:00
file_image_nonce.html^headers^ Bug 1355801: Nonce should not apply to images tests. r=dveditz 2017-05-10 08:53:27 +02:00
file_inlinescript.html
file_inlinestyle_main.html
file_inlinestyle_main.html^headers^
file_inlinestyle_main_allowed.html
file_inlinestyle_main_allowed.html^headers^
file_invalid_source_expression.html
file_leading_wildcard.html
file_main.html
file_main.html^headers^
file_main.js Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
file_meta_element.html Bug 1400487 - Move img src declaration after onload and onerror declaration in file_meta_element.html. r=ckerschb 2018-03-29 15:22:53 -04:00
file_meta_header_dual.sjs
file_meta_whitespace_skipping.html
file_multi_policy_injection_bypass.html
file_multi_policy_injection_bypass.html^headers^
file_multi_policy_injection_bypass_2.html
file_multi_policy_injection_bypass_2.html^headers^
file_multipart_testserver.sjs Bug 1416045. r=mayhemer CLOSED TREE 2018-03-22 21:02:16 +02:00
file_nonce_redirector.sjs Bug 1469150 - Tests added to check scripts with valid nonce is allowed if URL redirects. r=ckerschb 2018-06-22 20:38:05 +03:00
file_nonce_redirects.html Bug 1469150 - Tests added to check scripts with valid nonce is allowed if URL redirects. r=ckerschb 2018-06-22 20:38:05 +03:00
file_nonce_source.html
file_nonce_source.html^headers^
file_null_baseuri.html
file_path_matching.html
file_path_matching.js
file_path_matching_incl_query.html
file_path_matching_redirect.html
file_path_matching_redirect_server.sjs
file_ping.html
file_policyuri_regression_from_multipolicy.html
file_policyuri_regression_from_multipolicy.html^headers^
file_policyuri_regression_from_multipolicy_policy
file_punycode_host_src.js Bug 1224225: Tests for punycode/unicode in CSP source matching code r=ckerschb,KWierso 2017-03-15 13:22:55 +01:00
file_punycode_host_src.sjs Bug 1224225: Tests for punycode/unicode in CSP source matching code r=ckerschb,KWierso 2017-03-15 13:22:55 +01:00
file_redirect_content.sjs
file_redirect_report.sjs
file_redirect_worker.sjs
file_redirects_main.html
file_redirects_page.sjs
file_redirects_resource.sjs
file_report.html
file_report_chromescript.js Bug 1473587 - CSP Violation events should have the correct sample for inline contexts, r=jorendorff, r=ckerschb 2018-07-16 17:58:04 +02:00
file_report_font_cache-1.html Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
file_report_font_cache-2.html Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
file_report_font_cache-2.html^headers^ Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
file_report_for_import.css
file_report_for_import.html
file_report_for_import_server.sjs
file_report_uri_missing_in_report_only_header.html
file_report_uri_missing_in_report_only_header.html^headers^
file_require_sri_meta.js
file_require_sri_meta.sjs
file_ro_ignore_xfo.html Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_ro_ignore_xfo.html^headers^ Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_sandbox_1.html
file_sandbox_2.html
file_sandbox_3.html
file_sandbox_4.html
file_sandbox_5.html
file_sandbox_6.html
file_sandbox_7.html
file_sandbox_8.html
file_sandbox_9.html
file_sandbox_10.html
file_sandbox_11.html
file_sandbox_12.html
file_sandbox_13.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
file_sandbox_allow_scripts.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
file_sandbox_allow_scripts.html^headers^ Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
file_sandbox_fail.js
file_sandbox_pass.js
file_scheme_relative_sources.js
file_scheme_relative_sources.sjs
file_self_none_as_hostname_confusion.html
file_self_none_as_hostname_confusion.html^headers^
file_sendbeacon.html
file_service_worker.html Bug 1362970 - Part 2 - Script-generated patch to convert .then(null, ...) to .catch(...). r=florian 2017-06-19 11:32:37 +01:00
file_service_worker.js
file_spawn_service_worker.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_spawn_shared_worker.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_spawn_worker.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_strict_dynamic.js Bug 1299483 - CSP: Implement 'strict-dynamic', mochitests. r=dveditz,freddyb 2016-11-08 13:33:27 +01:00
file_strict_dynamic_default_src.html Bug 1299483 - CSP: Implement 'strict-dynamic', test default-src. r=dveditz 2016-11-08 13:34:36 +01:00
file_strict_dynamic_default_src.js Bug 1299483 - CSP: Implement 'strict-dynamic', test default-src. r=dveditz 2016-11-08 13:34:36 +01:00
file_strict_dynamic_js_url.html Bug 1316826 - Test for JS URLs and strict-dynamic. r=dveditz 2016-11-28 21:56:55 -05:00
file_strict_dynamic_non_parser_inserted.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_non_parser_inserted_inline.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_parser_inserted_doc_write.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_parser_inserted_doc_write_correct_nonce.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_script_events.html Bug 1316826 - Test case for strict-dynamic blocks inline event handlers. r=dveditz 2016-11-21 15:13:29 -05:00
file_strict_dynamic_script_events_xbl.html Bug 1316826 - Test case for strict-dynamic blocks inline event handlers. r=dveditz 2016-11-21 15:13:29 -05:00
file_strict_dynamic_script_extern.html Bug 1299483 - CSP: Implement 'strict-dynamic', mochitests. r=dveditz,freddyb 2016-11-08 13:33:27 +01:00
file_strict_dynamic_script_inline.html Bug 1299483 - CSP: Implement 'strict-dynamic', mochitests. r=dveditz,freddyb 2016-11-08 13:33:27 +01:00
file_strict_dynamic_unsafe_eval.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_subframe_run_js_if_allowed.html
file_subframe_run_js_if_allowed.html^headers^
file_testserver.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_uir_top_nav.html Bug 1391011: CSP: Test upgrade-insecure-requests for toplevel navigations when base it https. r=smaug 2017-08-21 08:58:01 +02:00
file_uir_top_nav_dummy.html Bug 1391011: CSP: Test upgrade-insecure-requests for toplevel navigations when base it https. r=smaug 2017-08-21 08:58:01 +02:00
file_upgrade_insecure.html Bug 1316305 - Explicilty call .close() for websocket in test. r=baku 2017-03-22 13:04:02 +01:00
file_upgrade_insecure_cors.html
file_upgrade_insecure_cors_server.sjs
file_upgrade_insecure_docwrite_iframe.sjs
file_upgrade_insecure_meta.html Bug 1316305 - Explicilty call .close() for websocket in test. r=baku 2017-03-22 13:04:02 +01:00
file_upgrade_insecure_navigation.sjs Bug 1271173 - Test upgrade-insecure-requests for navigational requests. r=smaug,freddyb 2016-05-09 13:37:49 +02:00
file_upgrade_insecure_reporting.html
file_upgrade_insecure_reporting_server.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_upgrade_insecure_server.sjs
file_upgrade_insecure_wsh.py
file_web_manifest.html
file_web_manifest.json
file_web_manifest.json^headers^
file_web_manifest_https.html
file_web_manifest_https.json
file_web_manifest_mixed_content.html
file_web_manifest_remote.html
file_websocket_explicit.html Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
file_websocket_self.html Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
file_websocket_self_wsh.py Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
file_win_open_blocked.html Bug 1440582 - Add CSP test with default-src 'none' that uses window.open() r=ckerschb 2018-03-26 18:33:43 +03:00
file_worker_src.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_worker_src_child_governs.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_worker_src_script_governs.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_worker_src_worker_governs.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
main_csp_worker.html Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
main_csp_worker.html^headers^ Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
mochitest.ini Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
referrerdirective.sjs
test_301_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_302_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_303_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_307_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_CSP.html Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
test_allow_https_schemes.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_base-uri.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_blob_data_schemes.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_block_all_mixed_content.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_block_all_mixed_content_frame_navigation.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_blocked_uri_in_reports.html Bug 1476280 - SecurityPolicyViolationEvent.blockedURI should contain the original URL in case of redirects, r=ckerschb 2018-07-18 16:49:18 +02:00
test_bug663567.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug802872.html
test_bug836922_npolicies.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug885433.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug886164.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug888172.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug909029.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug910139.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug941404.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug1229639.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug1242019.html Bug 1473218 - Implement report-sample support for CSP directives, r=ckerschb 2018-07-06 08:01:49 +02:00
test_bug1312272.html
test_child-src_iframe.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_child-src_worker-redirect.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_child-src_worker.html Bug 1302667 - CSP: Update test_child-src_worker.html because child-src falls back to script-src. r=dveditz,mckinley 2017-10-30 18:46:34 +01:00
test_child-src_worker_data.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_connect-src.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_csp_worker_inheritance.html Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
test_data_csp_inheritance.html Bug 1387811 - Follow up for Test within Bug 1381761: CSP JSON is never null, hence it's better to check actual contents of JSON for testing. r=dveditz 2017-08-06 11:37:09 +02:00
test_data_csp_merge.html Bug 1386183 - Test Meta CSP on data: URI iframe to be merged with CSP from including context. r=dveditz 2017-08-03 10:52:27 +02:00
test_data_doc_ignore_meta_csp.html Bug 1382869: Test data document should ignore meta csp. r=bz 2017-08-08 15:38:22 +02:00
test_docwrite_meta.html Bug 1339394 - Don't serialize transparent color to transparent keyword when not necessary. r=heycam,jaws 2017-02-16 10:26:13 +11:00
test_dual_header.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_empty_directive.html Bug 1456704 - Fix CSP empty directive test by ignoring errors that aren't from CSP. r=ckerschb 2018-05-14 10:44:06 +01:00
test_evalscript.html
test_evalscript_allowed_by_strict_dynamic.html Bug 1439330 - Test added to check if eval is blocked if 'strict-dynamic' is enabled. r=ckerschb 2018-05-07 15:01:22 -04:00
test_evalscript_blocked_by_strict_dynamic.html Bug 1439330 - Test added to check if eval is blocked if 'strict-dynamic' is enabled. r=ckerschb 2018-05-07 15:01:22 -04:00
test_fontloader.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_form-action.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_form_action_blocks_url.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_frame_ancestors_ro.html Bug 1418243 - Fix mochitest failures due to violationDirective change. r=ckerschb 2018-01-16 23:00:00 +02:00
test_frame_src.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
test_frameancestors.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_frameancestors_userpass.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
test_hash_source.html Bug 1334199 - script-generated patch to omit getComputedStyle's second argument when it's falsy, r=jaws. 2017-01-27 10:51:02 +01:00
test_iframe_sandbox.html Bug 1339461 - script-generated patch to convert foo.indexOf(...) == -1 to foo.includes(), r=Mossop. 2018-02-01 20:45:22 +01:00
test_iframe_sandbox_srcdoc.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_iframe_sandbox_top_1.html
test_iframe_sandbox_top_1.html^headers^
test_iframe_srcdoc.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_ignore_unsafe_inline.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_ignore_xfo.html Bug 1492059 - x-frame-options blocking should use NullPrincipal when loading about:blank, r=ckerschb 2018-09-18 16:57:04 +02:00
test_image_nonce.html Bug 1355801: Nonce should not apply to images tests. r=dveditz 2017-05-10 08:53:27 +02:00
test_inlinescript.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_inlinestyle.html Bug 1334199 - script-generated patch to omit getComputedStyle's second argument when it's falsy, r=jaws. 2017-01-27 10:51:02 +01:00
test_invalid_source_expression.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_leading_wildcard.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_meta_csp_self.html Bug 1474537 - CSP 'self' should translate to 'self' and not be resolved to actual self URI. r=dveditz 2018-07-22 18:08:17 +02:00
test_meta_element.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_meta_header_dual.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_meta_whitespace_skipping.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_multi_policy_injection_bypass.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_multipartchannel.html Bug 1416045. r=mayhemer CLOSED TREE 2018-03-22 21:02:16 +02:00
test_nonce_redirects.html Bug 1469150 - Tests added to check scripts with valid nonce is allowed if URL redirects. r=ckerschb 2018-06-22 20:38:05 +03:00
test_nonce_source.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_null_baseuri.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_path_matching.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_path_matching_redirect.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_ping.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_policyuri_regression_from_multipolicy.html
test_punycode_host_src.html Bug 1224225: Tests for punycode/unicode in CSP source matching code r=ckerschb,KWierso 2017-03-15 13:22:55 +01:00
test_redirects.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_report.html Bug 1418241 - CSP violation: blockedURI inline/eval, r=ckerschb 2018-07-17 11:13:12 +02:00
test_report_font_cache.html Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
test_report_for_import.html Bug 1474537 - CSP 'self' should translate to 'self' and not be resolved to actual self URI. r=dveditz 2018-07-22 18:08:17 +02:00
test_report_uri_missing_in_report_only_header.html
test_require_sri_meta.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_sandbox.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
test_sandbox_allow_scripts.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
test_scheme_relative_sources.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_security_policy_violation_event.html Bug 1488165 - Remove security.csp.enable_violation_events pref, r=dveditz 2018-09-06 09:05:10 +02:00
test_self_none_as_hostname_confusion.html
test_sendbeacon.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_service_worker.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_strict_dynamic.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_strict_dynamic_default_src.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_strict_dynamic_parser_inserted.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_subframe_run_js_if_allowed.html
test_uir_top_nav.html Bug 1391011: CSP: Test upgrade-insecure-requests for toplevel navigations when base it https. r=smaug 2017-08-21 08:58:01 +02:00
test_upgrade_insecure.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_upgrade_insecure_cors.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_upgrade_insecure_docwrite_iframe.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_upgrade_insecure_navigation.html Bug 1271173 - Test upgrade-insecure-requests for navigational requests. r=smaug,freddyb 2016-05-09 13:37:49 +02:00
test_upgrade_insecure_reporting.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_websocket_self.html Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
test_win_open_blocked.html Bug 1440582 - Add CSP test with default-src 'none' that uses window.open() r=ckerschb 2018-03-26 18:33:43 +03:00
test_worker_src.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
worker.sjs Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00
worker_helper.js Bug 1475849 - Refactor worker tests within test_CSP.html r=ckerschb 2018-07-23 18:55:56 +03:00