зеркало из https://github.com/mozilla/gecko-dev.git
187 строки
5.5 KiB
HTML
187 строки
5.5 KiB
HTML
<!DOCTYPE HTML>
|
|
<html>
|
|
<!--
|
|
https://bugzilla.mozilla.org/show_bug.cgi?id=685518
|
|
-->
|
|
<head>
|
|
<title>Test for Bug 685518</title>
|
|
<script type="application/javascript" src="/tests/SimpleTest/SimpleTest.js"></script>
|
|
<link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css"/>
|
|
</head>
|
|
<body>
|
|
<a target="_blank" href="https://bugzilla.mozilla.org/show_bug.cgi?id=685518">Mozilla Bug 685518</a>
|
|
<p id="display"></p>
|
|
<div id="content" style="display: none">
|
|
|
|
</div>
|
|
<pre id="test">
|
|
<script type="application/javascript">
|
|
|
|
/** Test for Bug 685518 **/
|
|
|
|
SimpleTest.waitForExplicitFinish();
|
|
|
|
const BAD_URI_ERR = "NS_ERROR_DOM_BAD_URI_ERR";
|
|
const OK = "";
|
|
|
|
function verifyError(actual_error, expected_error, message) {
|
|
ok(actual_error == expected_error,
|
|
message + ": expected " + expected_error + ", got " + actual_error);
|
|
}
|
|
|
|
var number_of_tests_live = 0;
|
|
|
|
function testDone() {
|
|
number_of_tests_live--;
|
|
|
|
if (number_of_tests_live == 0)
|
|
SimpleTest.finish();
|
|
}
|
|
|
|
function testImage(url, crossOriginAttribute, expected_error) {
|
|
++number_of_tests_live;
|
|
var image;
|
|
if (crossOriginAttribute == "just-crossOrigin-without-value") {
|
|
var div = document.createElement('div');
|
|
div.innerHTML="<img crossOrigin>";
|
|
image = div.children[0];
|
|
}
|
|
else {
|
|
image = new Image();
|
|
if (crossOriginAttribute != "missing-value-default") {
|
|
image.crossOrigin = crossOriginAttribute;
|
|
}
|
|
}
|
|
|
|
image.onload = function() {
|
|
var c = document.createElement("canvas");
|
|
c.width = this.width;
|
|
c.height = this.height;
|
|
var ctx = c.getContext("2d");
|
|
ctx.drawImage(this, 0, 0);
|
|
|
|
var data;
|
|
var actual_error;
|
|
try {
|
|
data = ctx.getImageData(0, 0, 1, 1);
|
|
actual_error = OK;
|
|
} catch (e) {
|
|
actual_error = e.name;
|
|
}
|
|
|
|
verifyError(actual_error, expected_error,
|
|
"drawImage then get image data on " + url +
|
|
" with crossOrigin=" + this.crossOrigin);
|
|
|
|
// Now test patterns
|
|
c = document.createElement("canvas");
|
|
c.width = this.width;
|
|
c.height = this.height;
|
|
ctx = c.getContext("2d");
|
|
ctx.fillStyle = ctx.createPattern(this, "");
|
|
ctx.fillRect(0, 0, c.width, c.height);
|
|
try {
|
|
data = ctx.getImageData(0, 0, 1, 1);
|
|
actual_error = OK;
|
|
} catch (e) {
|
|
actual_error = e.name;
|
|
}
|
|
|
|
verifyError(actual_error, expected_error,
|
|
"createPattern+fill then get image data on " + url +
|
|
" with crossOrigin=" + this.crossOrigin);
|
|
|
|
testDone();
|
|
};
|
|
|
|
image.onerror = function(event) {
|
|
verifyError(BAD_URI_ERR, expected_error,
|
|
"image error handler for " + url +
|
|
" with crossOrigin=" + this.crossOrigin);
|
|
|
|
testDone();
|
|
}
|
|
|
|
image.src = url;
|
|
}
|
|
|
|
// Now kick off the tests.
|
|
const testPath = "/tests/content/canvas/test/crossorigin/"
|
|
|
|
// First column is image file, second column is what CORS headers the server sends
|
|
const imageFiles = [
|
|
[ "image.png", "none" ],
|
|
[ "image-allow-star.png", "allow-all-anon" ],
|
|
[ "image-allow-credentials.png", "allow-single-server-creds" ]
|
|
];
|
|
|
|
const hostnames = [
|
|
[ "mochi.test:8888", "same-origin" ],
|
|
[ "example.com", "cross-origin" ]
|
|
];
|
|
|
|
// First column is the value; second column is the expected resulting CORS mode
|
|
const attrValues = [
|
|
[ "missing-value-default", "none" ],
|
|
[ "", "anonymous" ],
|
|
[ "just-crossOrigin-without-value", "anonymous" ],
|
|
[ "anonymous", "anonymous" ],
|
|
[ "use-credentials", "use-credentials" ],
|
|
[ "foobar", "anonymous" ]
|
|
];
|
|
|
|
for (var imgIdx = 0; imgIdx < imageFiles.length; ++imgIdx) {
|
|
for (var hostnameIdx = 0; hostnameIdx < hostnames.length; ++hostnameIdx) {
|
|
var hostnameData = hostnames[hostnameIdx];
|
|
var url = "http://" + hostnameData[0] + testPath + imageFiles[imgIdx][0];
|
|
for (var attrValIdx = 0; attrValIdx < attrValues.length; ++attrValIdx) {
|
|
var attrValData = attrValues[attrValIdx];
|
|
// Now compute the expected result
|
|
var expected_error;
|
|
if (hostnameData[1] == "same-origin") {
|
|
// Same-origin; these should all Just Work
|
|
expected_error = OK;
|
|
} else {
|
|
// Cross-origin
|
|
is(hostnameData[1], "cross-origin",
|
|
"what sort of host is " + hostnameData[0]);
|
|
var CORSMode = attrValData[1];
|
|
if (CORSMode == "none") {
|
|
// Doesn't matter what headers the server sends; we're not
|
|
// using CORS on our end.
|
|
expected_error = "SecurityError";
|
|
} else {
|
|
// Check whether the server will let us talk to them
|
|
var CORSHeaders = imageFiles[imgIdx][1];
|
|
// We're going to look for CORS headers from the server
|
|
if (CORSHeaders == "none") {
|
|
// No CORS headers from server; load will fail.
|
|
expected_error = BAD_URI_ERR;
|
|
} else if (CORSHeaders == "allow-all-anon") {
|
|
// Server only allows anonymous requests
|
|
if (CORSMode == "anonymous") {
|
|
expected_error = OK;
|
|
} else {
|
|
is(CORSMode, "use-credentials",
|
|
"What other CORS modes are there?");
|
|
// A load with credentials against a server that only
|
|
// allows anonymous loads will fail.
|
|
expected_error = BAD_URI_ERR;
|
|
}
|
|
} else {
|
|
is(CORSHeaders, "allow-single-server-creds",
|
|
"What other CORS headers could there be?");
|
|
// Our server should allow both anonymous and non-anonymous requests
|
|
expected_error = OK;
|
|
}
|
|
}
|
|
}
|
|
testImage(url, attrValData[0], expected_error);
|
|
}
|
|
}
|
|
}
|
|
</script>
|
|
</pre>
|
|
</body>
|
|
</html>
|