diff options
Diffstat (limited to 'testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html')
-rw-r--r-- | testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html | 36 |
1 files changed, 36 insertions, 0 deletions
diff --git a/testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html b/testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html new file mode 100644 index 0000000000..8c4aba11ec --- /dev/null +++ b/testing/web-platform/tests/trusted-types/eval-csp-tt-no-default-policy.tentative.html @@ -0,0 +1,36 @@ +<!DOCTYPE html> +<html> +<head> + <script nonce="abc" src="/resources/testharness.js"></script> + <script nonce="abc" src="/resources/testharnessreport.js"></script> + <script nonce="abc" src="support/helper.sub.js"></script> + <meta http-equiv="Content-Security-Policy" content="require-trusted-types-for 'script';"> +</head> +<body> +<script> + const p = trustedTypes.createPolicy("p", {createScript: s => s}); + + test(t => { + assert_equals(eval(p.createScript('1+1')), 2); + }, "eval of TrustedScript works."); + + test(t => { + assert_throws_js(EvalError, _ => eval('1+1')); + }, "eval of string fails."); + + test(t => { + assert_equals(eval(42), 42); + assert_object_equals(eval({}), {}); + assert_equals(eval(null), null); + assert_equals(eval(undefined), undefined); + }, "eval of !TrustedScript and !string works."); + + test(t => { + assert_equals(new Function(p.createScript('return 1+1'))(), 2); + }, "Function constructor of TrustedScript works."); + + test(t => { + assert_throws_js(EvalError, _ => new Function('return 1+1')()); + }, "Function constructor of string fails."); +</script> + |