diff options
| author | John Resig <jeresig@gmail.com> | 2011-01-18 15:13:09 -0500 |
|---|---|---|
| committer | John Resig <jeresig@gmail.com> | 2011-01-18 15:13:09 -0500 |
| commit | 9c763ad39d42c54d24f659e7895a8f361a08d27c (patch) | |
| tree | 3deddc380e94e89e5f95aba67974fa49744f29e4 /test/csp.php | |
| parent | c1d719b580ea78c33961113030d7fa25bcc98e6f (diff) | |
| download | jquery-9c763ad39d42c54d24f659e7895a8f361a08d27c.tar.gz jquery-9c763ad39d42c54d24f659e7895a8f361a08d27c.zip | |
Add another tweak for handling CSP - we need to make sure that we don't trigger any eval on load (not sure if it's the best tweak, definitely not ideal). Add a test page as well so that it's easier to catch problem.
Diffstat (limited to 'test/csp.php')
| -rw-r--r-- | test/csp.php | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/test/csp.php b/test/csp.php new file mode 100644 index 000000000..acf8f32c9 --- /dev/null +++ b/test/csp.php @@ -0,0 +1,30 @@ +<?php header("X-Content-Security-Policy-Report-Only: allow *"); ?> +<!DOCTYPE html> +<html> +<head> + <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> + <title>CSP Test Page</title> + + <script src="../src/core.js"></script> + <script src="../src/support.js"></script> + <script src="../src/data.js"></script> + <script src="../src/queue.js"></script> + <script src="../src/attributes.js"></script> + <script src="../src/event.js"></script> + <script src="../src/sizzle/sizzle.js"></script> + <script src="../src/sizzle-jquery.js"></script> + <script src="../src/traversing.js"></script> + <script src="../src/manipulation.js"></script> + <script src="../src/css.js"></script> + <script src="../src/ajax.js"></script> + <script src="../src/ajax/jsonp.js"></script> + <script src="../src/ajax/script.js"></script> + <script src="../src/ajax/xhr.js"></script> + <script src="../src/effects.js"></script> + <script src="../src/offset.js"></script> + <script src="../src/dimensions.js"></script> +</head> +<body> + <p>CSP Test Page</p> +</body> +</html> |