Source code
Revision control
Copy as Markdown
Other Tools
<!DOCTYPE html>
<html>
<head>
<meta http-equiv="Content-Security-Policy" content="script-src 'self' 'unsafe-inline'">
</head>
<body>
<script>window.__scriptLoaded = false;</script>
<script src="iframe-self-pass.js"></script>
<script>
var msg = window.__scriptLoaded
? "PASS script-src self sandboxed iframe"
: "FAIL script blocked in sandboxed iframe";
window.parent.postMessage(msg, "*");
</script>
</body>
</html>