blob: 7eed52aac7f2090fbf85792c4c53e1a8f2870b38 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
|
<!doctype html>
<meta http-equiv="Content-Security-Policy" content="style-src 'nonce-abc' 'report-sample'">
<script nonce="abc" src="/resources/testharness.js"></script>
<script nonce="abc" src="/resources/testharnessreport.js"></script>
<body>
<script nonce="abc">
function waitForViolation(el) {
return new Promise(resolve => {
el.addEventListener('securitypolicyviolation', e => resolve(e));
});
}
async_test(t => {
var s = document.createElement('style');
s.innerText = "p { omg: yay !important; }";
waitForViolation(s)
.then(t.step_func_done(e => {
assert_equals(e.blockedURI, "inline");
assert_equals(e.sample, "p { omg: yay !important; }");
}));
document.head.append(s);
}, "Inline style blocks should have a sample.");
async_test(t => {
var p = document.createElement('p');
p.setAttribute("style", "omg: yay !important;");
p.innerText = "Yay!";
waitForViolation(p)
.then(t.step_func_done(e => {
assert_equals(e.blockedURI, "inline");
assert_equals(e.sample, "omg: yay !important;");
}));
document.head.append(p);
}, "Inline style attributes should have a sample.");
</script>
|