Content - 0cd87756e944321264d105e26c4c72e23fa7f5c2 - 8b27618/cors/image-tainting-in-cross-origin-iframe.sub.html

visit type:

Tip revision: 0b94ea95c4e0639d9363cee4603545324f047456 authored by James Graham on 11 April 2018, 14:49:07 UTC
s/host/browser_host/ in wdspec fixture

Tip revision: 0b94ea9

image-tainting-in-cross-origin-iframe.sub.html

<!DOCTYPE html>
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<body>
</body>
<script>
async_test(t => {
  const img = document.createElement('img');
  img.onload = t.step_func(() => {
    const iframe = document.createElement('iframe');
    window.onmessage = t.step_func_done(e => {
      assert_equals(e.data, 'DONE');
    });
    iframe.src = 'http://{{domains[www1]}}:{{ports[http][0]}}/cors/resources/image-tainting-checker.sub.html';
    document.body.appendChild(iframe);
  });
  img.src = '/images/blue-png-cachable.py';
  document.body.appendChild(img);
}, 'An image resource that is same-origin to the top-level frame loaded in ' +
  'the frame is not treated as same-origin for an iframe that is ' +
  'cross-origin to the top-level frame, and therefore a canvas where the ' +
  'image is drawn gets tainted.');
</script>

Browse the archive

https://github.com/web-platform-tests/wpt