script-src-1_10_1.html (730B)
1 <!DOCTYPE HTML> 2 <html> 3 <head> 4 <title>data: as script src should run with a policy that specifies data: as an allowed source but not 'unsafe-inline'</title> 5 <meta http-equiv="Content-Security-Policy" content="script-src 'self' data:;"> 6 <script src='/resources/testharness.js'></script> 7 <script src='/resources/testharnessreport.js'></script> 8 </head> 9 <body> 10 <h1>data: as script src should run with a policy that specifies data: as an allowed source but not 'unsafe-inline'</h1> 11 <div id='log'></div> 12 13 <script src="10_1_support_1.js"></script> 14 15 <script src="data:text/javascript;charset=utf-8;base64,ZGF0YVNjcmlwdFJhbiA9IHRydWU7"></script> 16 17 <script src="10_1_support_2.js"></script> 18 </body> 19 </html>