| <meta http-equiv="Content-Security-Policy" content="img-src 'self'; report-uri http://localhost:8000/contentextensions/resources/save-ping.php?test=contentextensions-hide-on-csp-report"> |
| testRunner.dumpChildFramesAsText(); |
| testRunner.waitUntilDone(); |
| function loadCrossDomainImage() { |
| // Trying to load an image from a different port |
| // will result in a CSP violation. |
| var img = new Image(1, 1); |
| img.src = "http://localhost/foo.png"; |
| function showPingResult() { |
| var iframe = document.getElementById("result_frame"); |
| iframe.onload = function() { |
| if (window.testRunner) { testRunner.notifyDone(); } |
| iframe.src = "resources/get-ping-data.php?test=contentextensions-hide-on-csp-report"; |
| This test creates a CSP violation report, but the report URL matches a 'css-display-none' rule. |
| <p class="foo">This text should be hidden once the report is sent.</p> |
| <p class="bar">This text should remain visible.</p> |
| <img src="resources/delete-ping.php?test=contentextensions-hide-on-csp-report" onerror="loadCrossDomainImage();"> |
| <iframe id="result_frame" name="result_frame"><!-- Will contain ping data received by server --></iframe> |
