testing/web-platform/tests/content-security-policy/prefetch-src/prefetch-header-allowed.html


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25

<!DOCTYPE html>
<html>
<head>
  <!-- Headers:
    Content-Security-Policy: prefetch-src 'self'
    Link: </content-security-policy/support/pass.png>;rel=prefetch
  -->
  <script src='/resources/testharness.js'></script>
  <script src='/resources/testharnessreport.js'></script>
  <script src='/content-security-policy/support/testharness-helper.js'></script>
  <script src='/content-security-policy/support/prefetch-helper.js'></script>
  <script>
    async_test(t => {
      let url = window.origin + '/content-security-policy/support/pass.png';
      assert_no_csp_event_for_url(t, url);

      waitUntilResourceDownloaded(url)
        .then(t.step_func_done());
    }, 'Prefetch via `Link` header succeeds when allowed by prefetch-src');
  </script>
</head>
<body>
</body>
</html>