child-src-about-blank-allowed-by-scheme.sub.html (876B)
1 <!DOCTYPE html> 2 <html> 3 4 <head> 5 <!-- Programmatically converted from a WebKit Reftest, please forgive resulting idiosyncracies.--> 6 <meta http-equiv="Content-Security-Policy" content="child-src about:; script-src 'self' 'unsafe-inline'; connect-src 'self';"> 7 <title>child-src-about-blank-allowed-by-scheme</title> 8 <script src="/resources/testharness.js"></script> 9 <script src="/resources/testharnessreport.js"></script> 10 <p>This frame should not be blocked by Content-Security-Policy. 11 </p> 12 <script> 13 var t = async_test("Check that frames load without throwing any violation events"); 14 window.addEventListener("securitypolicyviolation", t.unreached_func("Should not have fired any events")); 15 </script> 16 17 <iframe src="about:blank"></iframe> 18 <div id="log"></div> 19 20 <script> 21 t.done(); 22 </script> 23 </body> 24 25 </html>