blob: 23c33d56553817384b0ab6928eb8939459562c48 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
<!DOCTYPE html>
<meta http-equiv="Content-Security-Policy" content="img-src *.{{host}}:{{ports[http][0]}}">
<html>
<head>
<title>img-src with full host and wildcard blocks correctly.</title>
<script src='/resources/testharness.js'></script>
<script src='/resources/testharnessreport.js'></script>
</head>
<body>
<div id='log'/>
<script>
var t1 = async_test("img src does not match full host and wildcard csp directive");
</script>
<img src='http://{{host}}:{{ports[http][0]}}/content-security-policy/support/fail.png'
onload='t1.step(function() { assert_unreached("Image should have loaded"); t1.done(); });'
onerror='t1.done();'>
</body>
</html>
|