OLD | NEW |
(Empty) | |
| 1 <!doctype html> |
| 2 <script src="/resources/testharness.js"></script> |
| 3 <script src="/resources/testharnessreport.js"></script> |
| 4 <meta http-equiv="Content-Security-Policy" content="require-sri-for script; scri
pt-src 'self' 'unsafe-inline'"> |
| 5 <script> |
| 6 async_test(t => { |
| 7 var watcher = new EventWatcher(t, document, ['securitypolicyviolation'])
; |
| 8 watcher |
| 9 .wait_for('securitypolicyviolation') |
| 10 .then(t.step_func_done(e => { |
| 11 assert_equals(e.blockedURI, "http://127.0.0.1:8000/security/cont
entSecurityPolicy/require-sri-for/not-ran.js"); |
| 12 })); |
| 13 }, "Script without integrity generates reports."); |
| 14 |
| 15 var executed_test = async_test("Script that requires integrity executes and
does not generate a violation report."); |
| 16 var unexecuted_test = async_test("Request to script without integrity is blo
cked, and generates violation report"); |
| 17 </script> |
| 18 <script crossorigin integrity="sha384-SOGIJ0vOWzweNE6RLF/TOXGmPzCxF5+dNuBP4x1Ngn
KsfC4yFCVIDJILalTMwUrp" src="ran.js"></script> |
| 19 <script src="not-ran.js"></script> |
| 20 <script> |
| 21 executed_test.done(); |
| 22 unexecuted_test.done(); |
| 23 </script> |
OLD | NEW |