1 CONSOLE ERROR: Refused to evaluate a string as CSS because 'unsafe-eval' is not
an allowed source of style in the following Content Security Policy directive: "
style-src 'unsafe-inline' 'self'".
2
3 Setting CSSStyleDeclaration::cssText blocked if 'unsafe-eval' is not an allowed
source of style.
4
5 On success, you will see a series of "PASS" messages, followed by "TEST COMPLETE
".
6
7
8 PASS document.head.style.cssText = 'display: none;'; threw exception SecurityErr
or: Failed to set the 'cssText' property on 'CSSStyleDeclaration': Refused to ev
aluate a string as CSS because 'unsafe-eval' is not an allowed source of style i
n the following Content Security Policy directive: "style-src 'unsafe-inline' 's
elf'".
Issue 169303003: CSP 1.1: Revert CSSOM changes.
(Closed)
Created 6 years, 10 months ago by Mike West
Modified 6 years, 10 months ago
Reviewers: jochen (gone - plz use gerrit)
Base URL: https://chromium.googlesource.com/chromium/blink.git@master
Comments: 0
Chromium Code Reviews
Issue 169303003:
CSP 1.1: Revert CSSOM changes. (Closed)
Base URL: https://chromium.googlesource.com/chromium/blink.git@master