<!DOCTYPE html>
<html>
<head>
<script src="/resources/testharness.js"></script>
<script src="/resources/testharnessreport.js"></script>
<meta http-equiv="Content-Security-Policy" content="manifest-src 'self'; connect-src 'none'">
</head>
<body>
<link rel="manifest" href="/security/resources/redir.php?url=http%3A%2F%2F127.0.0.1%3A8000%2Fsecurity%2FcontentSecurityPolicy%2Fmanifest.test%2Fmanifest.json">
<script>
if (window.testRunner) {
var t = async_test("manifest redirects to location disallowed by connect-src");
testRunner.getManifestThen(function() {
t.done();
});
}
</script>
</body>
</html>
Codebase Browser
chromium