src/third_party/WebKit/LayoutTests/http/tests/security/contentSecurityPolicy/worker-script-src.html

   1 <!DOCTYPE html>
   2 <html>
   3 <head>
   4 <meta http-equiv="Content-Security-Policy" content="script-src 'unsafe-inline'"/>
   5 <script>
   6 if (window.testRunner) {
   7     testRunner.dumpAsText();
   8 }
   9 if (window.internals)
  10     internals.settings.setExperimentalContentSecurityPolicyFeaturesEnabled(false);
  11 </script>
  12 </head>
  13 <body>
  14 <script>
  15 try {
  16     var foo = new Worker('http://127.0.0.1:8000/security/contentSecurityPolicy/resources/alert-fail.js');
  17 } catch (e) {
  18    alert(e);
  19 }
  20 </script>
  21 </body>
  22 </html>