OLD | NEW |
---|---|
(Empty) | |
1 <?php | |
2 header("Content-Security-Policy: require-sri-for script; script-src 'self' ' unsafe-inline'"); | |
3 ?> | |
4 <!doctype html> | |
5 <script crossorigin integrity="sha384-UJisrHOd28H+f7qUM4ht1sXeUXdQueftSMZzxqyAxS jCz3uRQKGYyihAu2NJZV/W" src="/resources/testharness.js"></script> | |
6 <script crossorigin integrity="sha384-n7qQ0cyZ8yW0wYyNNS+P26cklS47KYG3pDDR87Ya3Z +V0RsKbPi8W3R/8Io7jEeo" src="/resources/testharnessreport.js"></script> | |
7 <script> | |
Mike West
2016/06/21 07:29:36
More of a question for the spec than this patch, b
| |
8 var executed_test = async_test("Script that requires integrity executes and does not generate a violation report."); | |
9 document.addEventListener('securitypolicyviolation', executed_test.unreached _func("No report should be generated.")); | |
10 </script> | |
11 <script crossorigin integrity="sha384-SOGIJ0vOWzweNE6RLF/TOXGmPzCxF5+dNuBP4x1Ngn KsfC4yFCVIDJILalTMwUrp" src="ran.js"></script> | |
12 <script> | |
13 executed_test.done(); | |
Mike West
2016/06/21 07:29:36
assert_equals(z, 13);
| |
14 </script> | |
OLD | NEW |