Side by Side Diff: third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/embeddedEnforcement/allow_csp_header-same-origin-expected.txt
1 CONSOLE ERROR: line 11: Refused to load the image 'http://127.0.0.1:8000/securit
y/contentSecurityPolicy/resources/green250x50.png' because it violates the follo
wing Content Security Policy directive: "img-src 'none'".
2
3 ALERT: Hello from iframe
4 CONSOLE MESSAGE: line 24: IFrame load event fired: the IFrame's location is 'htt
p://127.0.0.1:8000/security/contentSecurityPolicy/resources/respond-with-allow-c
sp-from-header.php'.
5 Same origin iframes are Allowed and required CSP is appended to the list of resp
onse's CSP list.
6
7 On success, you will see a series of "PASS" messages, followed by "TEST COMPLETE
".
8
9
10 PASS The IFrame should not have been blocked. It wasn't.
Issue 2404373003: Experimental Feature: Allow-CSP-From header
(Closed)
Created 4 years, 2 months ago by amalika
Modified 4 years, 2 months ago
Reviewers: Mike West
Base URL:
Comments: 23