OLD | NEW |
1 ALERT: PASS (1/2) | 1 CONSOLE MESSAGE: Refused to load the script 'http://127.0.0.1:8000/security/cont
entSecurityPolicy/resources/script.js' because it violates the following Content
Security Policy directive: "script-src 'nonce-nonce'". |
2 ALERT: PASS (2/2) | |
3 CONSOLE MESSAGE: line 13: Refused to execute script because it violates the foll
owing Content Security Policy directive: "script-nonce noncynonce". | |
4 | 2 |
5 CONSOLE MESSAGE: line 16: Refused to execute script because it violates the foll
owing Content Security Policy directive: "script-nonce noncynonce". | 3 CONSOLE MESSAGE: Refused to load the script 'http://127.0.0.1:8000/security/cont
entSecurityPolicy/resources/script.js' because it violates the following Content
Security Policy directive: "script-src 'nonce-notnonce'". |
6 | 4 |
7 CONSOLE MESSAGE: line 19: Refused to execute script because it violates the foll
owing Content Security Policy directive: "script-nonce noncynonce". | 5 Only the first two of these scripts should execute even though there are parse e
rrors in the policy. |
8 | 6 |
9 This tests the effect of a valid script-nonce value. It passes if three console
warnings are visible, and the two PASS alerts are executed. | 7 |
| 8 |
| 9 -------- |
| 10 Frame: '<!--framePath //<!--frame0-->-->' |
| 11 -------- |
| 12 PASS |
| 13 |
| 14 -------- |
| 15 Frame: '<!--framePath //<!--frame1-->-->' |
| 16 -------- |
| 17 PASS |
| 18 |
| 19 -------- |
| 20 Frame: '<!--framePath //<!--frame2-->-->' |
| 21 -------- |
| 22 PASS |
| 23 |
| 24 -------- |
| 25 Frame: '<!--framePath //<!--frame3-->-->' |
| 26 -------- |
| 27 PASS |
OLD | NEW |