Skip to content

Commit 40ab21d

Browse files
zcbenzzcbenz
committed
spec: "disablewebsecurity" attribute
1 parent 947e6ac commit 40ab21d

File tree

2 files changed

+30
-0
lines changed

2 files changed

+30
-0
lines changed

spec/fixtures/assets/logo.png

13.7 KB
Loading

spec/webview-spec.coffee

Lines changed: 30 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -70,6 +70,36 @@ describe '<webview> tag', ->
7070
webview.src = "file://#{fixtures}/pages/referrer.html"
7171
document.body.appendChild webview
7272

73+
describe 'disablewebsecurity attribute', ->
74+
it 'does not disable web security when not set', (done) ->
75+
src = "
76+
<script src='file://#{__dirname}/static/jquery-2.0.3.min.js'></script>
77+
<script>console.log('ok');</script>
78+
"
79+
encoded = btoa(unescape(encodeURIComponent(src)))
80+
listener = (e) ->
81+
assert /Not allowed to load local resource/.test(e.message)
82+
webview.removeEventListener 'console-message', listener
83+
done()
84+
webview.addEventListener 'console-message', listener
85+
webview.src = "data:text/html;base64,#{encoded}"
86+
document.body.appendChild webview
87+
88+
it 'disables web security when set', (done) ->
89+
src = "
90+
<script src='file://#{__dirname}/static/jquery-2.0.3.min.js'></script>
91+
<script>console.log('ok');</script>
92+
"
93+
encoded = btoa(unescape(encodeURIComponent(src)))
94+
listener = (e) ->
95+
assert.equal e.message, 'ok'
96+
webview.removeEventListener 'console-message', listener
97+
done()
98+
webview.addEventListener 'console-message', listener
99+
webview.setAttribute 'disablewebsecurity', ''
100+
webview.src = "data:text/html;base64,#{encoded}"
101+
document.body.appendChild webview
102+
73103
describe 'new-window event', ->
74104
it 'emits when window.open is called', (done) ->
75105
webview.addEventListener 'new-window', (e) ->

0 commit comments

Comments
 (0)