Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(1240)

Side by Side Diff: LayoutTests/http/tests/security/contentSecurityPolicy/script-src-self-in-srcdoc-sandbox.html

Issue 150893004: CSP: 'self' should be handled correctly in sandboxes. (Closed) Base URL: https://chromium.googlesource.com/chromium/blink.git@master
Patch Set: Rebase Created 6 years, 10 months ago
Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.
Jump to:
View unified diff | Download patch
OLDNEW
(Empty)
1 <!DOCTYPE html>
2 <html>
3 <head>
4 <meta http-equiv="Content-Security-Policy" content="script-src 'unsafe-inlin e' 'self'">
5 <script>
6 if (window.testRunner) {
7 testRunner.dumpAsText();
8 testRunner.dumpChildFramesAsText();
9 }
10 </script>
11 </head>
12 <body>
13 <iframe sandbox="allow-scripts" srcdoc="
14 <div id='result' text='PASS'>FAIL</div>
15 <script src='http://127.0.0.1:8000/security/contentSecurityPolicy/resour ces/script.js'></script>
16 "></iframe>
17 </body>
18 </html>
19
OLDNEW

Powered by Google App Engine
This is Rietveld 408576698