| CONSOLE MESSAGE: line 1: [Report Only] Refused to execute a script because its hash, its nonce, or 'unsafe-inline' does not appear in the script-src directive of the Content Security Policy. |
| ALERT: PASS |
| CSP report received: |
| CONTENT_TYPE: application/csp-report |
| HTTP_HOST: 127.0.0.1:8000 |
| HTTP_REFERER: http://127.0.0.1:8000/security/contentSecurityPolicy/report-only-from-header.php |
| REQUEST_METHOD: POST |
| REQUEST_URI: /security/contentSecurityPolicy/resources/save-report.php |
| === POST DATA === |
| {"csp-report":{"document-uri":"http://127.0.0.1:8000/security/contentSecurityPolicy/report-only-from-header.php","referrer":"","violated-directive":"script-src 'self'","effective-directive":"script-src","original-policy":"script-src 'self'; report-uri resources/save-report.php","blocked-uri":"","status-code":200}} |