Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Limit iframes to only allow send-redemption-record
Fixed: 1397605 Change-Id: I2b85acbf6d6e6e044af15689c178bf3fd8ad06ce Reviewed-on: https://chromium-review.googlesource.com/c/chromium/src/+/4080544 Reviewed-by: Andrey Kosyakov <caseq@chromium.org> Commit-Queue: Sam Schlesinger <samschlesinger@google.com> Reviewed-by: Peter Kasting <pkasting@chromium.org> Reviewed-by: Steven Valdez <svaldez@chromium.org> Cr-Commit-Position: refs/heads/main@{#1085097}
- Loading branch information
1 parent
21b219c
commit ecc1059
Showing
8 changed files
with
119 additions
and
79 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
2 changes: 1 addition & 1 deletion
2
...y/blink/web_tests/http/tests/inspector-protocol/resources/iframe-request-trust-token.html
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1 +1 @@ | ||
<iframe src="https://issuer.example" trusttoken="{"type": "token-request"}"></iframe> | ||
<iframe src="https://issuer.example" trusttoken="{"type": "send-redemption-record", "issuers": ["https://issuer.example"] }"></iframe> |
2 changes: 1 addition & 1 deletion
2
...-tokens/http/tests/inspector-protocol/trust-tokens/trust-token-params-iframe-expected.txt
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -1,4 +1,4 @@ | ||
Check that TrustTokenParams are included when an iframe requests a trust token' | ||
Main frame navigation not expected to contain trustTokenParams. | ||
Included trustTokenParams in request: {"type":"Issuance","refreshPolicy":"UseCached"} | ||
Included trustTokenParams in request: {"type":"Signing","refreshPolicy":"UseCached","issuers":["https://issuer.example"]} | ||
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters