Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1342)

Issues Search
    My Issues | Starred     Open | Closed | All

Side by Side Diff: third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/report-uri-expected.txt

Issue 1486993002: Report "inline" or "eval" for non-fetch CSP violations (Closed) Base URL: https://chromium.googlesource.com/chromium/src.git@master
Patch Set: Created 5 years ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
« no previous file with comments | « third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/report-only-from-header-expected.txt ('k') | third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/report-uri-from-child-frame-expected.txt » ('j') | third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h » ('J')
Toggle Intra-line Diffs ('i') | Expand Comments ('e') | Collapse Comments ('c') | Show Comments Hide Comments ('s')
OLDNEW
1 CONSOLE ERROR: line 3: Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self'". Either the 'un safe-inline' keyword, a hash ('sha256-2jEXxWe/uIoRJGbfoW7Bd11qhRclP9IuS5ZXCbhCUn M='), or a nonce ('nonce-...') is required to enable inline execution. 1 CONSOLE ERROR: line 3: Refused to execute inline script because it violates the following Content Security Policy directive: "script-src 'self'". Either the 'un safe-inline' keyword, a hash ('sha256-2jEXxWe/uIoRJGbfoW7Bd11qhRclP9IuS5ZXCbhCUn M='), or a nonce ('nonce-...') is required to enable inline execution.
2 2
3 PingLoader dispatched to 'http://127.0.0.1:8000/security/contentSecurityPolicy/r esources/save-report.php?test=report-uri.html'. 3 PingLoader dispatched to 'http://127.0.0.1:8000/security/contentSecurityPolicy/r esources/save-report.php?test=report-uri.html'.
4 CSP report received: 4 CSP report received:
5 CONTENT_TYPE: application/csp-report 5 CONTENT_TYPE: application/csp-report
6 HTTP_REFERER: http://127.0.0.1:8000/security/contentSecurityPolicy/report-uri.ht ml 6 HTTP_REFERER: http://127.0.0.1:8000/security/contentSecurityPolicy/report-uri.ht ml
7 REQUEST_METHOD: POST 7 REQUEST_METHOD: POST
8 === POST DATA === 8 === POST DATA ===
9 {"csp-report":{"document-uri":"http://127.0.0.1:8000/security/contentSecurityPol icy/report-uri.html","referrer":"","violated-directive":"script-src 'self'","eff ective-directive":"script-src","original-policy":"script-src 'self'; report-uri resources/save-report.php?test=report-uri.html","blocked-uri":"","status-code":2 00}} 9 {"csp-report":{"document-uri":"http://127.0.0.1:8000/security/contentSecurityPol icy/report-uri.html","referrer":"","violated-directive":"script-src 'self'","eff ective-directive":"script-src","original-policy":"script-src 'self'; report-uri resources/save-report.php?test=report-uri.html","blocked-uri":"inline","status-c ode":200}}
OLDNEW
« no previous file with comments | « third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/report-only-from-header-expected.txt ('k') | third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/report-uri-from-child-frame-expected.txt » ('j') | third_party/WebKit/Source/core/frame/csp/ContentSecurityPolicy.h » ('J')

Powered by Google App Engine
This is Rietveld 408576698