summaryrefslogtreecommitdiffstats
path: root/dom/security/test/csp/test_image_document.html
blob: eba83f95a7a4cf4404e74d531718bcff7887f70b (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
<!DOCTYPE HTML>
<html>
<head>
  <meta charset="utf-8">
  <title>Bug 1627235: Test CSP for images loaded as iframe</title>
  <script src="/tests/SimpleTest/SimpleTest.js"></script>
  <link rel="stylesheet" type="text/css" href="/tests/SimpleTest/test.css" />
</head>
<body>

<iframe id="testframe"></iframe>

<script class="testbody" type="text/javascript">

SimpleTest.waitForExplicitFinish();

let testframe = document.getElementById("testframe");

testframe.onload = function() {
  ok(true, "sanity: should fire onload for image document");
  
  let contentDoc = SpecialPowers.wrap(testframe.contentDocument);
  let cspJSON = contentDoc.cspJSON;
  ok(cspJSON.includes("default-src"), "found default-src directive");
  ok(cspJSON.includes("https://bug1627235.test.com"), "found default-src value");
  SimpleTest.finish();
}
testframe.onerror = function() {
  ok(false, "sanity: should not fire onerror for image document");
}
testframe.src = "file_image_document_pixel.png";

</script>
</body>
</html>