forked from mirrors/gecko-dev
		
	 3defbe3b72
			
		
	
	
		3defbe3b72
		
	
	
	
	
		
			
			Differential Revision: https://phabricator.services.mozilla.com/D51090 --HG-- extra : moz-landing-system : lando
		
			
				
	
	
		
			101 lines
		
	
	
	
		
			2.6 KiB
		
	
	
	
		
			HTML
		
	
	
	
	
	
			
		
		
	
	
			101 lines
		
	
	
	
		
			2.6 KiB
		
	
	
	
		
			HTML
		
	
	
	
	
	
| <!DOCTYPE HTML>
 | |
| <html lang="en">
 | |
| <head>
 | |
|   <meta charset="utf8">
 | |
|   <title>Test for the network actor (HSTS detection)</title>
 | |
|   <script src="chrome://mochikit/content/tests/SimpleTest/SimpleTest.js"></script>
 | |
|   <script type="text/javascript" src="common.js"></script>
 | |
|   <!-- Any copyright is dedicated to the Public Domain.
 | |
|      - http://creativecommons.org/publicdomain/zero/1.0/ -->
 | |
| </head>
 | |
| <body>
 | |
| <p>Test for the network actor (HSTS detection)</p>
 | |
| 
 | |
| <iframe src="https://example.com/chrome/devtools/shared/webconsole/test/network_requests_iframe.html"></iframe>
 | |
| 
 | |
| <script class="testbody" type="text/javascript">
 | |
| "use strict";
 | |
| 
 | |
| SimpleTest.waitForExplicitFinish();
 | |
| 
 | |
| let gCurrentTestCase = -1;
 | |
| const TEST_CASES = [
 | |
|   {
 | |
|     desc: "no HSTS",
 | |
|     url: "https://example.com",
 | |
|     usesHSTS: false,
 | |
|   },
 | |
|   {
 | |
|     desc: "HSTS from this response",
 | |
|     url: "https://example.com/"+
 | |
|          "browser/browser/base/content/test/general/browser_star_hsts.sjs",
 | |
|     usesHSTS: true,
 | |
|   },
 | |
|   {
 | |
|     desc: "stored HSTS from previous response",
 | |
|     url: "https://example.com/",
 | |
|     usesHSTS: true,
 | |
|   }
 | |
| ];
 | |
| 
 | |
| function startTest()
 | |
| {
 | |
| 
 | |
|   SimpleTest.registerCleanupFunction(() => {
 | |
|     // Reset HSTS state.
 | |
|     const gSSService = Cc["@mozilla.org/ssservice;1"]
 | |
|                        .getService(Ci.nsISiteSecurityService);
 | |
| 
 | |
|     const gIOService = Services.io;
 | |
| 
 | |
|     const uri = gIOService.newURI(TEST_CASES[0].url);
 | |
|     gSSService.resetState(Ci.nsISiteSecurityService.HEADER_HSTS, uri, 0);
 | |
|   });
 | |
| 
 | |
|   info("Test detection of HTTP Strict Transport Security.");
 | |
|   removeEventListener("load", startTest);
 | |
|   attachConsoleToTab(["NetworkActivity"], onAttach);
 | |
| }
 | |
| 
 | |
| function onAttach(aState, aResponse)
 | |
| {
 | |
|   onNetworkEventUpdate = onNetworkEventUpdate.bind(null, aState);
 | |
|   aState.dbgClient.on("networkEventUpdate", onNetworkEventUpdate);
 | |
| 
 | |
|   runNextCase(aState);
 | |
| }
 | |
| 
 | |
| function runNextCase(aState) {
 | |
|   gCurrentTestCase++;
 | |
|   if (gCurrentTestCase === TEST_CASES.length) {
 | |
|     info("Tests ran. Cleaning up.");
 | |
|     closeDebugger(aState, SimpleTest.finish);
 | |
|     return;
 | |
|   }
 | |
| 
 | |
|   const { desc, url } = TEST_CASES[gCurrentTestCase];
 | |
|   info("Testing site with " + desc);
 | |
| 
 | |
|   const iframe = document.querySelector("iframe").contentWindow;
 | |
|   iframe.wrappedJSObject.makeXhrCallback("GET", url);
 | |
| }
 | |
| 
 | |
| function onNetworkEventUpdate(aState, aPacket)
 | |
| {
 | |
|   function onSecurityInfo(packet) {
 | |
|     const data = TEST_CASES[gCurrentTestCase];
 | |
|     is(packet.securityInfo.hsts, data.usesHSTS,
 | |
|       "Strict Transport Security detected correctly.");
 | |
| 
 | |
|     runNextCase(aState);
 | |
|   }
 | |
| 
 | |
|   if (aPacket.updateType === "securityInfo") {
 | |
|     aState.webConsoleFront.getSecurityInfo(aPacket.from, onSecurityInfo);
 | |
|   }
 | |
| }
 | |
| 
 | |
| addEventListener("load", startTest);
 | |
| </script>
 | |
| </body>
 | |
| </html>
 |