summaryrefslogtreecommitdiffstats
path: root/dom/security/test/csp/file_iframe_sandbox_srcdoc.html
diff options
context:
space:
mode:
Diffstat (limited to 'dom/security/test/csp/file_iframe_sandbox_srcdoc.html')
-rw-r--r--dom/security/test/csp/file_iframe_sandbox_srcdoc.html11
1 files changed, 11 insertions, 0 deletions
diff --git a/dom/security/test/csp/file_iframe_sandbox_srcdoc.html b/dom/security/test/csp/file_iframe_sandbox_srcdoc.html
new file mode 100644
index 0000000000..bc700ed68f
--- /dev/null
+++ b/dom/security/test/csp/file_iframe_sandbox_srcdoc.html
@@ -0,0 +1,11 @@
+<!DOCTYPE HTML>
+<html>
+<head>
+ <meta charset="utf-8">
+ <title>Bug 1073952 - CSP should restrict scripts in srcdoc iframe even if sandboxed</title>
+</head>
+<body>
+<iframe srcdoc="<img src=x onerror='parent.postMessage({result: `unexpected-csp-violation`}, `*`);'>"
+ sandbox="allow-scripts"></iframe>
+</body>
+</html>
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-12 19:11:34 +0000