testing/web-platform/meta/content-security-policy/embedded-enforcement/required_csp-header.html.ini


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67

[required_csp-header.html]
  [Test Required-CSP value on `csp` change: Sec-Required-CSP is not sent if `csp` attribute is not set on <iframe>.]
    expected: FAIL

  [Test same origin: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
    expected: FAIL

  [Test same origin redirect: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
    expected: FAIL

  [Test cross origin redirect: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
    expected: FAIL

  [Test cross origin redirect of cross origin iframe: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
    expected: FAIL

  [Test same origin: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
    expected: FAIL

  [Test same origin redirect: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
    expected: FAIL

  [Test cross origin redirect: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
    expected: FAIL

  [Test cross origin redirect of cross origin iframe: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - gibberish csp]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - unknown policy name]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - unknown policy name in multiple directives]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - misspeled 'none']
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - query values in path]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - missing semicolon]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - comma separated]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - html encoded string]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - url encoded string]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - report-uri present]
    expected: FAIL

  [Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - report-to present]
    expected: FAIL