mirror of
https://gitlab.winehq.org/wine/wine-gecko.git
synced 2024-09-13 09:24:08 -07:00
6df7712da7
From 53d47a84c35781e73545eab3e665d63c742a9d20 Mon Sep 17 00:00:00 2001 --HG-- rename : browser/components/sessionstore/test/browser_346337_sample.html => browser/components/sessionstore/test/browser_formdata_xpath_sample.html
43 lines
1.5 KiB
JavaScript
43 lines
1.5 KiB
JavaScript
/* Any copyright is dedicated to the Public Domain.
|
|
* http://creativecommons.org/publicdomain/zero/1.0/ */
|
|
|
|
"use strict";
|
|
|
|
const URL = ROOT + "browser_466937_sample.html";
|
|
|
|
/**
|
|
* Bug 466937 - Prevent file stealing with sessionstore.
|
|
*/
|
|
add_task(function test_prevent_file_stealing() {
|
|
// Add a tab with some file input fields.
|
|
let tab = gBrowser.addTab(URL);
|
|
let browser = tab.linkedBrowser;
|
|
yield promiseBrowserLoaded(browser);
|
|
|
|
// Generate a path to a 'secret' file.
|
|
let file = Services.dirsvc.get("TmpD", Ci.nsIFile);
|
|
file.append("466937_test.file");
|
|
file.createUnique(Ci.nsIFile.NORMAL_FILE_TYPE, parseInt("666", 8));
|
|
let testPath = file.path;
|
|
|
|
// Fill in form values.
|
|
yield setInputValue(browser, {id: "reverse_thief", value: "/home/user/secret2"});
|
|
yield setInputValue(browser, {id: "bystander", value: testPath});
|
|
|
|
// Duplicate and check form values.
|
|
let tab2 = gBrowser.duplicateTab(tab);
|
|
let browser2 = tab2.linkedBrowser;
|
|
yield promiseTabRestored(tab2);
|
|
|
|
let thief = yield getInputValue(browser2, {id: "thief"});
|
|
is(thief, "", "file path wasn't set to text field value");
|
|
let reverse_thief = yield getInputValue(browser2, {id: "reverse_thief"});
|
|
is(reverse_thief, "", "text field value wasn't set to full file path");
|
|
let bystander = yield getInputValue(browser2, {id: "bystander"});
|
|
is(bystander, testPath, "normal case: file path was correctly preserved");
|
|
|
|
// Cleanup.
|
|
gBrowser.removeTab(tab);
|
|
gBrowser.removeTab(tab2);
|
|
});
|