Source code
Revision control
Copy as Markdown
Other Tools
[required_csp-header.html]
[Test Required-CSP value on `csp` change: Sec-Required-CSP is not sent if `csp` attribute is not set on <iframe>.]
expected: FAIL
[Test same origin: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
expected: FAIL
[Test same origin redirect: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
expected: FAIL
[Test cross origin redirect: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
expected: FAIL
[Test cross origin redirect of cross origin iframe: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
expected: FAIL
[Test Required-CSP value on `csp` change: Send Sec-Required-CSP when `csp` attribute of <iframe> is not empty.]
expected: FAIL
[Test same origin: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
expected: FAIL
[Test same origin redirect: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
expected: FAIL
[Test cross origin redirect: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
expected: FAIL
[Test cross origin redirect of cross origin iframe: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
expected: FAIL
[Test Required-CSP value on `csp` change: Send Sec-Required-CSP Header on change of `src` attribute on iframe.]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - gibberish csp]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - unknown policy name]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - unknown policy name in multiple directives]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - misspeled 'none']
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - query values in path]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - missing semicolon]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - comma separated]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - html encoded string]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - url encoded string]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - report-uri present]
expected: FAIL
[Test Required-CSP value on `csp` change: Wrong value of `csp` should not trigger sending Sec-Required-CSP Header - report-to present]
expected: FAIL