partitioned-popins.cookies-blocked.tentative.sub.https.window.js

mozilla-central/testing/web-platform/tests/partitioned-popins/partitioned-popins.cookies-blocked.tentative.sub.https.window.js (file symbol)

Enable keyboard shortcuts

Source code

File a bug in Testing :: web-platform-tests

Revision control

Copy as Markdown

Other Tools

Test Info: Warnings

This test has a WPT meta file that expects 1 subtest issues.
This WPT test may be referenced by the following Test IDs:
- /partitioned-popins/partitioned-popins.cookies-blocked.tentative.sub.https.window.html - WPT Dashboard Interop Dashboard

// META: script=/resources/testdriver.js

// META: script=/resources/testdriver-vendor.js

// META: script=/storage-access-api/helpers.js

'use strict';

// Spec: https://explainers-by-googlers.github.io/partitioned-popins/

// Step 1 (main-window) Set up listener to resolve messages as they come in.

// Step 2 (main-window) Open window for other origin.

// Step 3 (other-window) Write first-party cookies and report success.

// Step 4 (main-window) Embed iframe for other origin.

// Step 5 (main-iframe) Write third-party cookies and report success.

// Step 6 (main-window) Open partitioned popin for other origin.

// Step 7 (popin) Check for first-/third-party cookies.

// Step 8 (popin-iframe) Check for first-/third-party cookies and report success.

// Step 9 (popin) Report success.

// Step 10 (main-window) Cleanup.

async_test(t => {

  const id = String(Math.random());

  document.cookie = "FirstPartyStrict=" + id + "; SameSite=Strict; Secure";

  document.cookie = "FirstPartyLax=" + id + "; SameSite=Lax; Secure";

  document.cookie = "FirstPartyNone=" + id + "; SameSite=None; Secure";

  // Step 1

  window.addEventListener("message", t.step_func(e => {

    switch (e.data.type) {

      case 'window-set':

        // Step 4

        assert_equals(e.data.message, "Set first-party data");

        const iframe = document.createElement("iframe");

        iframe.src = "https://{{hosts[alt][]}}:{{ports[https][0]}}/partitioned-popins/resources/partitioned-popins.cookies-iframe.html?id="+id;

        document.body.appendChild(iframe);

        break;

      case 'iframe-set':

        // Step 6

        assert_equals(e.data.message, "Set third-party data");

        window.open("https://{{hosts[alt][]}}:{{ports[https][0]}}/partitioned-popins/resources/partitioned-popins.cookies-popin.sub.py?id="+id, '_blank', 'popin');

        break;

      case 'popin-read':

        // Step 10

        // We want to see the same behavior a cross-site iframe would have, only SameSite=None available, with the ability to set additional cookies in the popin.

        // TODO(crbug.com/340606651): Once RSA is implemented we should see first-party cookies after the call.

        assert_equals(e.data.message, "ReadOnLoad:ThirdPartyNone-,ReadOnFetch:ThirdPartyNone-ThirdPartyNonePopin-,ReadOnDocument:ThirdPartyNone-ThirdPartyNonePopin-,ReadOnFetchAfterRSA:ThirdPartyNone-ThirdPartyNonePopin-ThirdPartyNonePopinAfterRSA-,ReadOnDocumentAfterRSA:ThirdPartyNone-ThirdPartyNonePopin-ThirdPartyNonePopinAfterRSA-,ReadInPopinIframe:ThirdPartyNone-,ReadInPopinIframeAfterRSA:FirstPartyNone-ThirdPartyNone-FirstPartyNoneAfterRSA-ThirdPartyNoneAfterRSA-");

        t.done();

        break;

  }));

  MaybeSetStorageAccess("*", "*", "blocked").then(() => {

    // Step 2

    window.open("https://{{hosts[alt][]}}:{{ports[https][0]}}/partitioned-popins/resources/partitioned-popins.cookies-window.html?id="+id, '_blank', 'popup');

});

}, "Verify Partitioned Popins cookie access when third-party cookie access blocked");