OLD | NEW |
---|---|
(Empty) | |
1 <!-- <?php | |
2 // TODO(mkwst) enable after windows hash differences are fixed | |
3 header("Content-Security-Policy-Report-Only: require-sri-for script; script- src 'self' 'unsafe-inline'"); | |
4 ?> --> | |
Mike West
2016/07/14 07:29:49
Drop the `<!--/-->`.
| |
5 <!doctype html> | |
6 <script src="/resources/testharness.js"></script> | |
7 <script src="/resources/testharnessreport.js"></script> | |
8 <script> | |
9 // TODO(mkwst) remove .expected after windows hash differences are fixed | |
10 async_test(t => { | |
11 var watcher = new EventWatcher(t, document, ['securitypolicyviolation']) ; | |
12 watcher | |
13 .wait_for('securitypolicyviolation') | |
14 .then(t.step_func_done(e => { | |
15 assert_equals(e.blockedURI, "http://127.0.0.1:8000/security/cont entSecurityPolicy/require-sri-for/ran.js"); | |
16 })); | |
17 }, "Script without integrity generates reports."); | |
Mike West
2016/07/14 07:29:49
I don't think you'll have to change this, actually
Sergey Shekyan
2016/07/14 08:01:33
Indeed, there is almost nothing to change. `testha
| |
18 | |
19 var executed_test = async_test("Script that requires integrity executes and generates a violation report."); | |
20 </script> | |
21 <script src="ran.js"></script> | |
22 <script> | |
23 assert_equals(z, 13); | |
24 executed_test.done(); | |
25 </script> | |
OLD | NEW |