3 <pre id='console'
></pre>
4 <script type=
"text/javascript">
7 document
.getElementById('console').appendChild(document
.createTextNode(message
+ "\n"));
10 if (window
.testRunner
) {
11 testRunner
.dumpAsText();
12 testRunner
.waitUntilDone();
16 var xhr
= new XMLHttpRequest();
19 xhr
.open("GET", "http://localhost:8000/xmlhttprequest/resources/access-control-preflight-denied-xsrf.php?state=reset", false);
22 log("FAIL: Unable to reset server state: [" + e
.message
+ "].");
26 xhr
= new XMLHttpRequest();
29 xhr
.open("GET", "http://localhost:8000/xmlhttprequest/resources/access-control-preflight-denied-xsrf.php?state=header", true);
30 xhr
.setRequestHeader("X-NON-STANDARD", "filler");
32 log("FAIL: Exception thrown. Cross-domain access is not allowed in first 'open'. [" + e
.message
+ "].");
36 xhr
.onerror = function() {
37 xhr
= new XMLHttpRequest();
40 xhr
.open("GET", "http://localhost:8000/xmlhttprequest/resources/access-control-preflight-denied-xsrf.php?state=complete", false);
44 log("FAIL: Exception thrown. Cross-domain access is not allowed in second 'send'. [" + e
.message
+ "].");
47 log("FAIL: Exception thrown. Cross-domain access is not allowed in second 'open'. [" + e
.message
+ "].");
50 log(xhr
.responseText
);
51 if (window
.testRunner
)
52 testRunner
.notifyDone();
55 xhr
.onreadystatechange = function() {
56 if (xhr
.readyState
== 4 && xhr
.status
== 200)
57 log("FAIL: Cross-domain access allowed in first send without throwing an exception");