| <!DOCTYPE html> |
| <!-- DO NOT EDIT! Generated by upgrade-insecure-requests/generic/tools/generate.py using common/security-features/tools/template/test.release.html.template. --> |
| <html> |
| <head> |
| <title>Upgrade-Insecure-Requests: With upgrade-insecure-request</title> |
| <meta charset='utf-8'> |
| <meta name="description" content="With upgrade-insecure-request"> |
| <link rel="author" title="Kristijan Burnik" href="burnik@chromium.org"> |
| <link rel="help" href="https://w3c.github.io/webappsec-upgrade-insecure-requests/"> |
| <meta name="assert" content="Upgrade-Insecure-Requests: Expects allowed for xhr to cross-http-downgrade origin and downgrade redirection from https context."> |
| <meta http-equiv="Content-Security-Policy" content="upgrade-insecure-requests"> |
| <script src="/resources/testharness.js"></script> |
| <script src="/resources/testharnessreport.js"></script> |
| <script src="/common/security-features/resources/common.sub.js"></script> |
| <script src="/upgrade-insecure-requests/generic/test-case.sub.js"></script> |
| </head> |
| <body> |
| <script> |
| TestCase( |
| { |
| "expectation": "allowed", |
| "origin": "cross-http-downgrade", |
| "redirection": "downgrade", |
| "source_context_list": [], |
| "source_scheme": "https", |
| "subresource": "xhr", |
| "subresource_policy_deliveries": [] |
| }, |
| document.querySelector("meta[name=assert]").content, |
| new SanityChecker() |
| ).start(); |
| </script> |
| <div id="log"></div> |
| </body> |
| </html> |