gecko-dev/dom/security/test/csp
vinoth 24cafeec62 Bug 1416045. r=mayhemer CLOSED TREE
Reviewers: mayhemer

Reviewed By: mayhemer

Subscribers: freddyb, dveditz, mayhemer, ckerschb, vinoth

Tags: PHID-PROJ-wkydohdk6pajyfn2llkb

Bug #: 1416045

Differential Revision: https://phabricator.services.mozilla.com/D675

--HG--
extra : rebase_source : 65fb235d787b6955da1433ea2ffd56082cab0b30
extra : amend_source : affac492394597daf9b3294d4aca2f61bc27fc73
2018-03-22 21:02:16 +02:00
..
Ahem.ttf Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
browser.ini
browser_manifest-src-override-default-src.js Bug 1431533: Part 5a - Auto-rewrite code to use ChromeUtils import methods. r=florian 2018-01-29 15:20:18 -08:00
browser_test_web_manifest.js Bug 1431533: Part 5a - Auto-rewrite code to use ChromeUtils import methods. r=florian 2018-01-29 15:20:18 -08:00
browser_test_web_manifest_mixed_content.js Bug 1431533: Part 5a - Auto-rewrite code to use ChromeUtils import methods. r=florian 2018-01-29 15:20:18 -08:00
file_CSP.css
file_CSP.sjs
file_allow_https_schemes.html
file_base_uri_server.sjs
file_blob_data_schemes.html
file_block_all_mcb.sjs
file_block_all_mixed_content_frame_navigation1.html
file_block_all_mixed_content_frame_navigation2.html
file_bug663567.xsl
file_bug663567_allows.xml
file_bug663567_allows.xml^headers^
file_bug663567_blocks.xml
file_bug663567_blocks.xml^headers^
file_bug802872.html
file_bug802872.html^headers^
file_bug802872.js
file_bug802872.sjs
file_bug836922_npolicies.html
file_bug836922_npolicies.html^headers^
file_bug836922_npolicies_ro_violation.sjs
file_bug836922_npolicies_violation.sjs
file_bug885433_allows.html
file_bug885433_allows.html^headers^
file_bug885433_blocks.html
file_bug885433_blocks.html^headers^
file_bug886164.html
file_bug886164.html^headers^
file_bug886164_2.html
file_bug886164_2.html^headers^
file_bug886164_3.html
file_bug886164_3.html^headers^
file_bug886164_4.html
file_bug886164_4.html^headers^
file_bug886164_5.html
file_bug886164_5.html^headers^
file_bug886164_6.html
file_bug886164_6.html^headers^
file_bug888172.html
file_bug888172.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_bug909029_none.html
file_bug909029_none.html^headers^
file_bug909029_star.html
file_bug909029_star.html^headers^
file_bug910139.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_bug910139.xml
file_bug910139.xsl
file_bug941404.html
file_bug941404_xhr.html
file_bug941404_xhr.html^headers^
file_bug1229639.html
file_bug1229639.html^headers^
file_bug1312272.html Bug 1312272 - Test that marquee event handlers are subject to CSP. r=smaug 2016-11-04 22:54:19 -04:00
file_bug1312272.html^headers^ Bug 1312272 - Test that marquee event handlers are subject to CSP. r=smaug 2016-11-04 22:54:19 -04:00
file_bug1312272.js Bug 1312272 - Test that marquee event handlers are subject to CSP. r=smaug 2016-11-04 22:54:19 -04:00
file_child-src_iframe.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
file_child-src_inner_frame.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
file_child-src_service_worker.html
file_child-src_service_worker.js
file_child-src_shared_worker-redirect.html
file_child-src_shared_worker.html
file_child-src_shared_worker.js
file_child-src_shared_worker_data.html
file_child-src_worker-redirect.html Bug 1288768 - Better error reporting for network errors in workers - WPT, r=bz 2017-01-28 15:40:08 +01:00
file_child-src_worker.html
file_child-src_worker.js
file_child-src_worker_data.html
file_child_worker.js
file_child_worker.js^headers^
file_connect-src-fetch.html
file_connect-src.html
file_data-uri_blocked.html
file_data-uri_blocked.html^headers^
file_data_csp_inheritance.html Bug 1387811 - Follow up for Test within Bug 1381761: CSP JSON is never null, hence it's better to check actual contents of JSON for testing. r=dveditz 2017-08-06 11:37:09 +02:00
file_data_csp_merge.html Bug 1386183 - Test Meta CSP on data: URI iframe to be merged with CSP from including context. r=dveditz 2017-08-03 10:52:27 +02:00
file_data_doc_ignore_meta_csp.html Bug 1382869: Test data document should ignore meta csp. r=bz 2017-08-08 15:38:22 +02:00
file_doccomment_meta.html
file_docwrite_meta.css
file_docwrite_meta.html
file_docwrite_meta.js
file_dual_header_testserver.sjs
file_evalscript_main.html
file_evalscript_main.html^headers^
file_evalscript_main.js
file_evalscript_main_allowed.html
file_evalscript_main_allowed.html^headers^
file_evalscript_main_allowed.js
file_fontloader.sjs
file_fontloader.woff
file_form-action.html
file_form_action_server.sjs
file_frame_ancestors_ro.html Bug 1380755 - Examine & report on frame-ancestors CSP in report-only mode. r=ckerschb 2017-07-17 14:19:57 -04:00
file_frame_ancestors_ro.html^headers^ Bug 1380755 - Examine & report on frame-ancestors CSP in report-only mode. r=ckerschb 2017-07-17 14:19:57 -04:00
file_frame_src.js Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frame_src_child_governs.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frame_src_frame_governs.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frame_src_inner.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
file_frameancestors.sjs
file_frameancestors_main.html
file_frameancestors_main.js Bug 1367531: Update CSP frame ancestors test to make sure paths are ignored. r=dveditz 2017-06-06 09:12:32 +02:00
file_frameancestors_userpass.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_a.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_b.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_c.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_c.html^headers^ Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_d.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_frameancestors_userpass_frame_d.html^headers^ Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
file_hash_source.html
file_hash_source.html^headers^
file_iframe_sandbox_document_write.html
file_iframe_sandbox_srcdoc.html Bug 1073952: tests for iframe sandbox srcdoc and data URIs with CSP r=ckerschb,Tomcat 2017-01-30 14:12:15 +01:00
file_iframe_sandbox_srcdoc.html^headers^ Bug 1073952: tests for iframe sandbox srcdoc and data URIs with CSP r=ckerschb,Tomcat 2017-01-30 14:12:15 +01:00
file_iframe_srcdoc.sjs Bug 1073952: tests for iframe sandbox srcdoc and data URIs with CSP r=ckerschb,Tomcat 2017-01-30 14:12:15 +01:00
file_ignore_unsafe_inline.html
file_ignore_unsafe_inline_multiple_policies_server.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_ignore_xfo.html Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_ignore_xfo.html^headers^ Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_image_nonce.html Bug 1355801: Nonce should not apply to images tests. r=dveditz 2017-05-10 08:53:27 +02:00
file_image_nonce.html^headers^ Bug 1355801: Nonce should not apply to images tests. r=dveditz 2017-05-10 08:53:27 +02:00
file_inlinescript.html
file_inlinestyle_main.html
file_inlinestyle_main.html^headers^
file_inlinestyle_main_allowed.html
file_inlinestyle_main_allowed.html^headers^
file_invalid_source_expression.html
file_leading_wildcard.html
file_main.html
file_main.html^headers^
file_main.js
file_main_worker.js
file_main_worker.js^headers^
file_meta_element.html
file_meta_header_dual.sjs
file_meta_whitespace_skipping.html
file_multi_policy_injection_bypass.html
file_multi_policy_injection_bypass.html^headers^
file_multi_policy_injection_bypass_2.html
file_multi_policy_injection_bypass_2.html^headers^
file_multipart_testserver.sjs Bug 1416045. r=mayhemer CLOSED TREE 2018-03-22 21:02:16 +02:00
file_nonce_source.html
file_nonce_source.html^headers^
file_null_baseuri.html
file_path_matching.html
file_path_matching.js
file_path_matching_incl_query.html
file_path_matching_redirect.html
file_path_matching_redirect_server.sjs
file_ping.html
file_policyuri_regression_from_multipolicy.html
file_policyuri_regression_from_multipolicy.html^headers^
file_policyuri_regression_from_multipolicy_policy
file_punycode_host_src.js Bug 1224225: Tests for punycode/unicode in CSP source matching code r=ckerschb,KWierso 2017-03-15 13:22:55 +01:00
file_punycode_host_src.sjs Bug 1224225: Tests for punycode/unicode in CSP source matching code r=ckerschb,KWierso 2017-03-15 13:22:55 +01:00
file_redirect_content.sjs
file_redirect_report.sjs
file_redirect_worker.sjs
file_redirects_main.html
file_redirects_page.sjs
file_redirects_resource.sjs
file_referrerdirective.html
file_report.html
file_report_chromescript.js Bug 1432992, part 1 - Remove definitions of Ci, Cr, Cc, and Cu. r=florian 2018-02-06 09:36:57 -08:00
file_report_font_cache-1.html Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
file_report_font_cache-2.html Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
file_report_font_cache-2.html^headers^ Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
file_report_for_import.css
file_report_for_import.html
file_report_for_import_server.sjs
file_report_uri_missing_in_report_only_header.html
file_report_uri_missing_in_report_only_header.html^headers^
file_require_sri_meta.js
file_require_sri_meta.sjs
file_ro_ignore_xfo.html Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_ro_ignore_xfo.html^headers^ Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
file_sandbox_1.html
file_sandbox_2.html
file_sandbox_3.html
file_sandbox_4.html
file_sandbox_5.html
file_sandbox_6.html
file_sandbox_7.html
file_sandbox_8.html
file_sandbox_9.html
file_sandbox_10.html
file_sandbox_11.html
file_sandbox_12.html
file_sandbox_13.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
file_sandbox_allow_scripts.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
file_sandbox_allow_scripts.html^headers^ Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
file_sandbox_fail.js
file_sandbox_pass.js
file_scheme_relative_sources.js
file_scheme_relative_sources.sjs
file_self_none_as_hostname_confusion.html
file_self_none_as_hostname_confusion.html^headers^
file_sendbeacon.html
file_service_worker.html Bug 1362970 - Part 2 - Script-generated patch to convert .then(null, ...) to .catch(...). r=florian 2017-06-19 11:32:37 +01:00
file_service_worker.js
file_spawn_service_worker.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_spawn_shared_worker.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_spawn_worker.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_strict_dynamic.js Bug 1299483 - CSP: Implement 'strict-dynamic', mochitests. r=dveditz,freddyb 2016-11-08 13:33:27 +01:00
file_strict_dynamic_default_src.html Bug 1299483 - CSP: Implement 'strict-dynamic', test default-src. r=dveditz 2016-11-08 13:34:36 +01:00
file_strict_dynamic_default_src.js Bug 1299483 - CSP: Implement 'strict-dynamic', test default-src. r=dveditz 2016-11-08 13:34:36 +01:00
file_strict_dynamic_js_url.html Bug 1316826 - Test for JS URLs and strict-dynamic. r=dveditz 2016-11-28 21:56:55 -05:00
file_strict_dynamic_non_parser_inserted.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_non_parser_inserted_inline.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_parser_inserted_doc_write.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_parser_inserted_doc_write_correct_nonce.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_strict_dynamic_script_events.html Bug 1316826 - Test case for strict-dynamic blocks inline event handlers. r=dveditz 2016-11-21 15:13:29 -05:00
file_strict_dynamic_script_events_xbl.html Bug 1316826 - Test case for strict-dynamic blocks inline event handlers. r=dveditz 2016-11-21 15:13:29 -05:00
file_strict_dynamic_script_extern.html Bug 1299483 - CSP: Implement 'strict-dynamic', mochitests. r=dveditz,freddyb 2016-11-08 13:33:27 +01:00
file_strict_dynamic_script_inline.html Bug 1299483 - CSP: Implement 'strict-dynamic', mochitests. r=dveditz,freddyb 2016-11-08 13:33:27 +01:00
file_strict_dynamic_unsafe_eval.html Bug 1299483 - CSP: Implement 'strict-dynamic', parser inserted mochitests. r=dveditz,freddyb 2016-11-08 13:33:58 +01:00
file_subframe_run_js_if_allowed.html
file_subframe_run_js_if_allowed.html^headers^
file_testserver.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_uir_top_nav.html Bug 1391011: CSP: Test upgrade-insecure-requests for toplevel navigations when base it https. r=smaug 2017-08-21 08:58:01 +02:00
file_uir_top_nav_dummy.html Bug 1391011: CSP: Test upgrade-insecure-requests for toplevel navigations when base it https. r=smaug 2017-08-21 08:58:01 +02:00
file_upgrade_insecure.html Bug 1316305 - Explicilty call .close() for websocket in test. r=baku 2017-03-22 13:04:02 +01:00
file_upgrade_insecure_cors.html
file_upgrade_insecure_cors_server.sjs
file_upgrade_insecure_docwrite_iframe.sjs
file_upgrade_insecure_meta.html Bug 1316305 - Explicilty call .close() for websocket in test. r=baku 2017-03-22 13:04:02 +01:00
file_upgrade_insecure_navigation.sjs Bug 1271173 - Test upgrade-insecure-requests for navigational requests. r=smaug,freddyb 2016-05-09 13:37:49 +02:00
file_upgrade_insecure_referrer.sjs
file_upgrade_insecure_referrer_server.sjs
file_upgrade_insecure_reporting.html
file_upgrade_insecure_reporting_server.sjs Bug 1375125 - Stop using nsILocalFile in the tree. r=froydnj 2017-08-04 17:49:22 +09:00
file_upgrade_insecure_server.sjs
file_upgrade_insecure_wsh.py
file_web_manifest.html
file_web_manifest.json
file_web_manifest.json^headers^
file_web_manifest_https.html
file_web_manifest_https.json
file_web_manifest_mixed_content.html
file_web_manifest_remote.html
file_websocket_explicit.html Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
file_websocket_self.html Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
file_websocket_self_wsh.py Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
file_worker_src.js Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_worker_src_child_governs.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_worker_src_script_governs.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
file_worker_src_worker_governs.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00
mochitest.ini Bug 1435733 - Upgrade mixed display content pref. r=baku,ckerschb,francois,mayhemer 2018-02-05 15:37:27 +00:00
referrerdirective.sjs
test_301_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_302_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_303_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_307_redirect.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_CSP.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_allow_https_schemes.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_base-uri.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_blob_data_schemes.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_block_all_mixed_content.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_block_all_mixed_content_frame_navigation.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_blocked_uri_in_reports.html Bug 1384741 - Part 2: Allow file_report_chromescript.js to listen for more than one CSP violation report. r=bz 2017-08-07 10:11:04 +08:00
test_bug663567.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug802872.html
test_bug836922_npolicies.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug885433.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug886164.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug888172.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug909029.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug910139.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_bug941404.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug1229639.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_bug1242019.html
test_bug1312272.html Bug 1312272 - Test that marquee event handlers are subject to CSP. r=smaug 2016-11-04 22:54:19 -04:00
test_child-src_iframe.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_child-src_worker-redirect.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_child-src_worker.html Bug 1302667 - CSP: Update test_child-src_worker.html because child-src falls back to script-src. r=dveditz,mckinley 2017-10-30 18:46:34 +01:00
test_child-src_worker_data.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_connect-src.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_data_csp_inheritance.html Bug 1387811 - Follow up for Test within Bug 1381761: CSP JSON is never null, hence it's better to check actual contents of JSON for testing. r=dveditz 2017-08-06 11:37:09 +02:00
test_data_csp_merge.html Bug 1386183 - Test Meta CSP on data: URI iframe to be merged with CSP from including context. r=dveditz 2017-08-03 10:52:27 +02:00
test_data_doc_ignore_meta_csp.html Bug 1382869: Test data document should ignore meta csp. r=bz 2017-08-08 15:38:22 +02:00
test_docwrite_meta.html Bug 1339394 - Don't serialize transparent color to transparent keyword when not necessary. r=heycam,jaws 2017-02-16 10:26:13 +11:00
test_dual_header.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_evalscript.html
test_fontloader.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_form-action.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_form_action_blocks_url.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_frame_ancestors_ro.html Bug 1418243 - Fix mochitest failures due to violationDirective change. r=ckerschb 2018-01-16 23:00:00 +02:00
test_frame_src.html Bug 1302667 - CSP: Test 'frame-src'. r=dveditz,mckinley 2017-10-30 18:46:19 +01:00
test_frameancestors.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_frameancestors_userpass.html Bug 1370468 - frame-ancestor tests added for userpass r=ckerschb,fkiefer 2017-08-30 15:58:20 +02:00
test_hash_source.html Bug 1334199 - script-generated patch to omit getComputedStyle's second argument when it's falsy, r=jaws. 2017-01-27 10:51:02 +01:00
test_iframe_sandbox.html Bug 1339461 - script-generated patch to convert foo.indexOf(...) == -1 to foo.includes(), r=Mossop. 2018-02-01 20:45:22 +01:00
test_iframe_sandbox_srcdoc.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_iframe_sandbox_top_1.html
test_iframe_sandbox_top_1.html^headers^
test_iframe_srcdoc.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_ignore_unsafe_inline.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_ignore_xfo.html Bug 1024557 - Test XFO is ignored when frame-ancestors is present. r=smaug 2017-06-07 10:12:55 +02:00
test_image_nonce.html Bug 1355801: Nonce should not apply to images tests. r=dveditz 2017-05-10 08:53:27 +02:00
test_inlinescript.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_inlinestyle.html Bug 1334199 - script-generated patch to omit getComputedStyle's second argument when it's falsy, r=jaws. 2017-01-27 10:51:02 +01:00
test_invalid_source_expression.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_leading_wildcard.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_meta_csp_self.html Bug 1387871 - CSP: Test 'self' within meta csp in data: URI iframe. r=dveditz 2017-08-23 09:50:20 +02:00
test_meta_element.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_meta_header_dual.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_meta_whitespace_skipping.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_multi_policy_injection_bypass.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_multipartchannel.html Bug 1416045. r=mayhemer CLOSED TREE 2018-03-22 21:02:16 +02:00
test_nonce_source.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_null_baseuri.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_path_matching.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_path_matching_redirect.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_ping.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_policyuri_regression_from_multipolicy.html
test_punycode_host_src.html Bug 1224225: Tests for punycode/unicode in CSP source matching code r=ckerschb,KWierso 2017-03-15 13:22:55 +01:00
test_redirects.html Backed out changeset 322fde2d53bf (bug 1356569) so bug 1355161 can be backed out. r=backout 2017-04-14 23:39:22 +02:00
test_referrerdirective.html Bug 1424917 - Remove support for HSTS Priming. r=mayhemer, r=ckerschb 2018-01-10 11:07:00 -05:00
test_report.html Backed out changeset 7d62c45d5973 (bug 1236222) for X xpcshell failures in :toolkit/components/extensions/test/xpcshell/test_ext_contentscript_triggeringPrincipal.js on a CLOSED TREE 2018-03-12 21:35:57 +02:00
test_report_font_cache.html Bug 1384741 - Part 4: Test that we don't send CSP violation reports for cached fonts we don't actually use. r=jfkthame 2017-08-07 10:13:31 +08:00
test_report_for_import.html Bug 1418243 - Fix mochitest failures due to violationDirective change. r=ckerschb 2018-01-16 23:00:00 +02:00
test_report_uri_missing_in_report_only_header.html
test_require_sri_meta.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_sandbox.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
test_sandbox_allow_scripts.html Bug 1396320: Fix CSP sandbox regression for allow-scripts. r=dveditz 2017-09-07 09:11:38 +02:00
test_scheme_relative_sources.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_security_policy_violation_event.html Bug 1418243 - Fix mochitest failures due to violationDirective change. r=ckerschb 2018-01-16 23:00:00 +02:00
test_self_none_as_hostname_confusion.html
test_sendbeacon.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_service_worker.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_strict_dynamic.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_strict_dynamic_default_src.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_strict_dynamic_parser_inserted.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_subframe_run_js_if_allowed.html
test_uir_top_nav.html Bug 1391011: CSP: Test upgrade-insecure-requests for toplevel navigations when base it https. r=smaug 2017-08-21 08:58:01 +02:00
test_upgrade_insecure.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_upgrade_insecure_cors.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_upgrade_insecure_docwrite_iframe.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_upgrade_insecure_navigation.html Bug 1271173 - Test upgrade-insecure-requests for navigational requests. r=smaug,freddyb 2016-05-09 13:37:49 +02:00
test_upgrade_insecure_referrer.html
test_upgrade_insecure_reporting.html Bug 1331081 - script generated patch to omit addEventListener/removeEventListener's third parameter when it's false, r=jaws. 2017-01-17 11:50:25 +01:00
test_websocket_self.html Bug 1345615: Test websocket schemes when using 'self' in CSP. r=freddyb,dveditz 2017-04-27 09:59:35 +02:00
test_worker_src.html Bug 1302667 - CSP: Test 'worker-src'. r=dveditz,mckinley 2017-10-30 18:46:05 +01:00