| <!DOCTYPE HTML> |
| <html> |
| <head> |
| <title>HTML5 Sandbox: document.cookie access is allowed inside iframe with sandbox="allow-same-origin".</title> |
| <meta content="text/html; charset=UTF-8" http-equiv="Content-Type" /> |
| <link rel="author" title="Microsoft" href="http://www.microsoft.com/" /> |
| <link rel="help" href="http://dev.w3.org/html5/spec/Overview.html#sandboxed-origin-browsing-context-flag" /> |
| <meta name="assert" content="document.cookie access is allowed inside iframe with sandbox='allow-same-origin'." /> |
| <script src="/resources/testharness.js"></script> |
| <script src="/resources/testharnessreport.js"></script> |
| </head> |
| <body> |
| <script type="text/javascript"> |
| |
| |
| var t = async_test("document.cookie access is allowed inside iframe with sandbox='allow-same-origin'."); |
| |
| function callback(event) |
| { |
| t.step(function(){ |
| assert_true('sandbox' in document.createElement('iframe')); |
| assert_equals(event.data, "cookies are R/W"); |
| }); |
| t.done(); |
| } |
| |
| var timer = setTimeout(callback, 4000); |
| window.addEventListener("message", callback, false); |
| </script> |
| <div id=log></div> |
| <iframe src="iframe_sandbox_024.htm" sandbox="allow-scripts allow-same-origin" style="display:none"></iframe> |
| </body> |
| </html> |