OLD | NEW |
(Empty) | |
| 1 <?php |
| 2 header("Content-Security-Policy-Report-Only: require-sri-for script; script-
src 'self' 'unsafe-inline'"); |
| 3 ?> |
| 4 <!doctype html> |
| 5 <script src="/resources/testharness.js"></script> |
| 6 <script src="/resources/testharnessreport.js"></script> |
| 7 <script> |
| 8 async_test(t => { |
| 9 var watcher = new EventWatcher(t, document, ['securitypolicyviolation','
securitypolicyviolation']); |
| 10 watcher |
| 11 .wait_for('securitypolicyviolation') |
| 12 .then(t.step_func_done(e => { |
| 13 assert_equals(e.blockedURI, "http://127.0.0.1:8000/resources/tes
tharnessreport.js"); |
| 14 return watcher.wait_for('securitypolicyviolation'); |
| 15 })) |
| 16 .then(t.step_func_done(e => { |
| 17 assert_equals(e.blockedURI, "http://127.0.0.1:8000/security/cont
entSecurityPolicy/require-sri-for/ran.js"); |
| 18 })); |
| 19 }, "Script without integrity generates reports."); |
| 20 |
| 21 var executed_test = async_test("Script that requires integrity executes and
generates a violation report."); |
| 22 </script> |
| 23 <script src="ran.js"></script> |
| 24 <script> |
| 25 assert_equals(z, 13); |
| 26 executed_test.done(); |
| 27 </script> |
OLD | NEW |