summaryrefslogtreecommitdiffstats
path: root/testing/web-platform/tests/content-security-policy/font-src/font-stylesheet-font-blocked.sub.html
blob: 3b47d0b2e22f72bb39cce8f3f98f21b97d4f7004 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
<!doctype html>
<meta charset=utf-8>
<meta http-equiv="Content-Security-Policy" content="font-src 'none'">
<head>
  <title>Test font does not load if it does not match font-src.</title>
  <script src='/resources/testharness.js'></script>
  <script src='/resources/testharnessreport.js'></script>
</head>
<body>
  <div id="log"/>
  <script>
    async_test(function(t) {
      var link = document.createElement('link');
      link.rel="stylesheet";
      link.type="text/css";
      link.href="/content-security-policy/support/fonts.css";
      // The stylesheet should stil load, even though the font contained does not
      link.onerror = t.unreached_func("Should have loaded the stylesheet.");
      document.addEventListener("securitypolicyviolation", t.step_func_done(function(e) {
        assert_equals(e.violatedDirective, "font-src");
      }));
      document.getElementsByTagName('head')[0].appendChild(link);
    }, "Test font does not load if it does not match font-src.");
  </script>
</body>