Google Git
Sign in
cos / mirrors / cros / chromiumos / third_party / autotest / refs/heads/stabilize-7978.51.B / . / client / site_tests / policy_JavaScriptAllowedForUrls / policy_JavaScriptAllowedForUrls.py
blob: 0ae4deb0043466a095b42e9b80cd8ebbad29cd07 [file] [log] [blame]
# Copyright 2015 The Chromium OS Authors. All rights reserved.
# Use of this source code is governed by a BSD-style license that can be
# found in the LICENSE file.
import logging
import time
import utils
from autotest_lib.client.common_lib import error
from autotest_lib.client.cros import enterprise_policy_base
class policy_JavaScriptAllowedForUrls(
enterprise_policy_base.EnterprisePolicyTest):
"""Test JavaScriptAllowedForUrls policy effect on CrOS look & feel.
This test verifies the behavior of Chrome OS with a range of valid values
for the JavaScriptAllowedForUrls user policies. These values are covered
by four test cases, named: NotSet_BlockJS, SingleUrl_AllowJS,
MultipleUrls_BlockJS, and MultipleUrls_AllowJS.
When the policy value is None (as in case=NotSet_BlockJS), then
JavaScript will be blocked on any page. When the value is set to a single
URL pattern (as in case=SingleUrl_AllowJS), JavaScript will be allowed on
any page that matches that pattern. When set to multiple URL patterns (as
in case=MultipleUrls_BlockJS or MultipleUrls_AllowJS) then JavaScript will
be allowed on any page with a URL that matches any of the listed patterns.
Two test cases (SingleUrl_AllowJS, MultipleUrls_AllowJS) are designed to
allow JavaScript to run on the test page. The other two test cases
(NotSet_BlockJS, MultipleUrls_BlockJS) are designed to block JavaScript
from running on the test page.
Note this test has a dependency on the DefaultJavaScriptSetting policy,
which is partially tested herein, and in policy_JavaScriptBlockedForUrls.
For this test, we set DefaultJavaScriptSetting=2. This blocks JavaScript
on all pages except those with a URL matching a pattern in
JavaScriptAllowedForUrls. For the test policy_JavaScriptBlockedForUrls, we
set DefaultJavaScriptSetting=1. That allows JavaScript to be run on all
pages except those with URLs that match patterns listed in
JavaScriptBlockedForUrls.
"""
version = 1
POLICY_NAME = 'JavaScriptAllowedForUrls'
URL_HOST = 'http://localhost'
URL_PORT = 8080
URL_BASE = '%s:%d' % (URL_HOST, URL_PORT)
URL_PAGE = '/js_test.html'
TEST_URL = URL_BASE + URL_PAGE
TEST_CASES = {
'NotSet_BlockJS': None,
'SingleUrl_AllowJS': [URL_BASE],
'MultipleUrls_BlockJS': ['http://www.bing.com',
'https://www.yahoo.com'],
'MultipleUrls_AllowJS': ['http://www.bing.com',
TEST_URL,
'https://www.yahoo.com']
}
STARTUP_URLS = ['chrome://policy', 'chrome://settings']
SUPPORTING_POLICIES = {
'DefaultJavaScriptSetting': 2,
'BookmarkBarEnabled': False,
'RestoreOnStartupURLs': STARTUP_URLS,
'RestoreOnStartup': 4
}
def initialize(self, args=()):
super(policy_JavaScriptAllowedForUrls, self).initialize(args)
self.start_webserver(self.URL_PORT)
def _can_execute_javascript(self, tab):
"""Determine whether JavaScript is allowed to run on the given page.
@param tab: browser tab containing JavaScript to run.
"""
try:
utils.poll_for_condition(
lambda: tab.EvaluateJavaScript('jsAllowed', timeout=2),
exception=error.TestError('Test page is not ready.'))
return True
except:
return False
def _test_javascript_allowed_for_urls(self, policy_value, policies_json):
"""Verify CrOS enforces the JavaScriptAllowedForUrls policy.
When JavaScriptAllowedForUrls is undefined, JavaScript shall be blocked
on all pages. When JavaScriptAllowedForUrls contains one or more URL,
patterns, JavaScript shall be allowed to run only on the pages whose
URL matches any of the listed patterns.
@param policy_value: policy value expected on chrome://policy page.
@param policies_json: policy JSON data to send to the fake DM server.
"""
self.setup_case(self.POLICY_NAME, policy_value, policies_json)
logging.info('Running _test_javascript_allowed_for_urls(%s, %s)',
policy_value, policies_json)
tab = self.cr.browser.tabs.New()
tab.Activate()
tab.Navigate(self.TEST_URL)
time.sleep(1)
utils.poll_for_condition(
lambda: (tab.url == self.TEST_URL),
exception=error.TestError('Test page is not ready.'))
javascript_is_allowed = self._can_execute_javascript(tab)
if policy_value is not None and self.URL_HOST in policy_value:
# If |URL_HOST| is in |policy_value|, then JavaScript execution
# should be allowed. If execution is blocked, raise an error.
if not javascript_is_allowed:
raise error.TestFail('JavaScript should be allowed.')
else:
if javascript_is_allowed:
raise error.TestFail('JavaScript should be blocked.')
tab.Close()
def _run_test_case(self, case):
"""Setup and run the test configured for the specified test case.
Set the expected |policy_value| string and |policies_json| data based
on the test |case|. If the user specified an expected |value| in the
command line args, then use it to set the |policy_value| and blank out
the |policies_json|.
@param case: Name of the test case to run.
"""
if self.is_value_given:
# If |value| was given in the command line args, then set expected
# |policy_value| to the given value, and |policies_json| to None.
policy_value = self.value
policies_json = None
else:
# Otherwise, set expected |policy_value| and setup |policies_json|
# data to the values required by the specified test |case|.
if not self.TEST_CASES[case]:
policy_value = None
else:
policy_value = ','.join(self.TEST_CASES[case])
policy_json = {'JavaScriptAllowedForUrls': self.TEST_CASES[case]}
policies_json = self.SUPPORTING_POLICIES.copy()
policies_json.update(policy_json)
# Run test using the values configured for the test |case|.
self._test_javascript_allowed_for_urls(policy_value, policies_json)
def run_once(self):
self.run_once_impl(self._run_test_case)