RGBCube/serenity
1
Fork 0
mirror of https://github.com/RGBCube/serenity synced 2026-01-20 21:20:59 +00:00
Code Issues Activity Actions
serenity/Base/res/html/misc/cookie.html
Timothy Flynn 82c53178fa Base: Update cookie test page to include unretrievable cookies 
"Unretrievable" meaning from JavaScript via document.cookie. They are
settable though and may be viewed with the Dump Cookies command in the
Browser.
2021-04-15 09:46:49 +02:00

36 lines
2 KiB
HTML
Raw Blame History

<body>
<h3>Valid cookies:</h3>
<br /><input type=button onclick="setCookie(this.value)" value="cookie1=value1; max-age=5; path=/res/html" />
<br /><input type=button onclick="setCookie(this.value)" value="cookie2=value2; expires=Sat, 23 Jan 2060 08:10:36 GMT" />
<br /><input type=button onclick="setCookie(this.value)" value="cookie3=value3" />
<br />
<h3>Invalid cookies (the browser should reject these):</h3>
<br /><input id=invalid1 type=button onclick="setCookie(this.value)" value="cookie4=value4; domain=serenityos.org" />
<label for=invalid1>The Domain attribute does not domain-match this page</label>
<br /><input id=invalid2 type=button onclick="setCookie(this.value)" value="cookie5=value5; httponly" />
<label for=invalid2>The cookie is HttpOnly thus cannot be set via JavaScript</label>
<br /><input id=invalid3 type=button onclick="setCookie(this.value)" value="cookie6=value6; max-age=-1" />
<label for=invalid3>The cookie expired in the past</label>
<br /><input id=invalid4 type=button onclick="setCookie(this.value)" value="cookie7=value7; expires=Mon, 23 Jan 1989 08:10:36 GMT" />
<label for=invalid4>The cookie expired in the past</label>
<br />
<h3>Unretrievable cookies (the browser should accept these but not display them):</h3>
<br /><input id=locked1 type=button onclick="setCookie(this.value)" value="cookie8=value8; path=/not/this/path" />
<label for=locked1>The Path attribute does not path-match this page</label>
<br /><input id=locked2 type=button onclick="setCookie(this.value)" value="cookie9=value9; secure" />
<label for=locked2>The cookie is Secure thus cannot be viewed by a file:// page</label>
<br />
<pre>document.cookie = <span id=cookies></span></pre>
<script>
function setCookie(cookie) {
document.cookie = cookie;
document.getElementById('cookies').innerHTML = document.cookie;
}
document.getElementById('cookies').innerHTML = document.cookie;
</script>
</body>
Reference in a new issue View git blame Copy permalink