blob: 65767dfb9cfac3baf37497da24be373db850e713 [file] [log] [blame]
CONSOLE ERROR: Refused to load the image 'http://127.0.0.1:8000/security/resources/abe.png' because it violates the following Content Security Policy directive: "img-src 'none'".
Check that a SecurityPolicyViolationEvent strips detail from cross-origin URLs upon blocking an image injected via script.
On success, you will see a series of "PASS" messages, followed by "TEST COMPLETE".
Kicking off the tests:
PASS window.e.documentURI is "http://127.0.0.1:8000/security/contentSecurityPolicy/securitypolicyviolation/securitypolicyviolation-block-cross-origin-image-from-script.html"
PASS window.e.referrer is ""
PASS window.e.blockedURI is "http://127.0.0.1:8000/security/resources/abe.png"
PASS window.e.violatedDirective is "img-src"
PASS window.e.effectiveDirective is "img-src"
PASS window.e.originalPolicy is "img-src 'none'"
PASS window.e.disposition is "enforce"
PASS window.e.sourceFile is ""
PASS window.e.lineNumber is 0
PASS window.e.columnNumber is 0
PASS window.e.statusCode is 200
PASS successfullyParsed is true
TEST COMPLETE