blob: 3b47d0b2e22f72bb39cce8f3f98f21b97d4f7004 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
|
<!doctype html>
<meta charset=utf-8>
<meta http-equiv="Content-Security-Policy" content="font-src 'none'">
<head>
<title>Test font does not load if it does not match font-src.</title>
<script src='/resources/testharness.js'></script>
<script src='/resources/testharnessreport.js'></script>
</head>
<body>
<div id="log"/>
<script>
async_test(function(t) {
var link = document.createElement('link');
link.rel="stylesheet";
link.type="text/css";
link.href="/content-security-policy/support/fonts.css";
// The stylesheet should stil load, even though the font contained does not
link.onerror = t.unreached_func("Should have loaded the stylesheet.");
document.addEventListener("securitypolicyviolation", t.step_func_done(function(e) {
assert_equals(e.violatedDirective, "font-src");
}));
document.getElementsByTagName('head')[0].appendChild(link);
}, "Test font does not load if it does not match font-src.");
</script>
</body>
|