diff options
Diffstat (limited to '')
-rw-r--r-- | browser/components/sessionstore/test/browser_911547_sample.html | 18 | ||||
-rw-r--r-- | browser/components/sessionstore/test/browser_911547_sample.html^headers^ | 1 |
2 files changed, 19 insertions, 0 deletions
diff --git a/browser/components/sessionstore/test/browser_911547_sample.html b/browser/components/sessionstore/test/browser_911547_sample.html new file mode 100644 index 0000000000..9d2706c008 --- /dev/null +++ b/browser/components/sessionstore/test/browser_911547_sample.html @@ -0,0 +1,18 @@ +<!DOCTYPE html> +<html> + <head> + <meta charset="utf-8"> + <title>Test 911547</title> + </head> +<body> + + <!-- + this element gets modified by an injected script; + that script should be blocked by CSP + --> + <input type="text" id="test_id1" value="id1_initial"> + + <a id="test_data_link" href="data:text/html;charset=utf-8,<input type='text' id='test_id2' value='id2_initial'/> <script>document.getElementById('test_id2').value = 'id2_modified';</script>">Test Link</a> + +</body> +</html> diff --git a/browser/components/sessionstore/test/browser_911547_sample.html^headers^ b/browser/components/sessionstore/test/browser_911547_sample.html^headers^ new file mode 100644 index 0000000000..4623dec303 --- /dev/null +++ b/browser/components/sessionstore/test/browser_911547_sample.html^headers^ @@ -0,0 +1 @@ +Content-Security-Policy: script-src 'self' |