ALERT: Running test #1
CONSOLE ERROR: Refused to frame 'http://127.0.0.1:8000/security/isolatedWorld/resources/iframe.php?test=1' because it violates the following Content Security Policy directive: "frame-src 'none'".
ALERT: Running test #2
CONSOLE ERROR: Refused to frame 'http://127.0.0.1:8000/security/isolatedWorld/resources/iframe.php?test=2' because it violates the following Content Security Policy directive: "frame-src 'none'".
ALERT: Running test #3
ALERT: Starting to bypass main world's CSP:
ALERT: iframe loaded in test #3
ALERT: Running test #4
CONSOLE ERROR: Refused to frame 'http://127.0.0.1:8000/security/isolatedWorld/resources/iframe.php?test=4' because it violates the following Content Security Policy directive: "frame-src 'none'".
ALERT: iframe loaded in test #4.5
ALERT: Running test #5
CONSOLE ERROR: Refused to frame 'http://127.0.0.1:8000/security/isolatedWorld/resources/iframe.php?test=5.5' because it violates the following Content Security Policy directive: "frame-src 'none'".
ALERT: Running test #6
CONSOLE ERROR: Refused to frame 'http://127.0.0.1:8000/security/isolatedWorld/resources/iframe.php?test=6' because it violates the following Content Security Policy directive: "frame-src 'none'".
ALERT: Running test #7
This test ensures that iframes loaded from isolated worlds marked with their own Content Security Policy aren't affected by the page's content security policy. Extensions, for example, should be able to load any resource they like.
Codebase Browser
chromium