Skip to content

Commit

Permalink
Bug 1896687 - remove CSP dictionary from test because app only forwar…
Browse files Browse the repository at this point in the history
…ds browser-generated CSP reports to reporting endpoint
  • Loading branch information
Archaeopteryx committed May 14, 2024
1 parent 3b40cf7 commit e85d592
Showing 1 changed file with 4 additions and 5 deletions.
9 changes: 4 additions & 5 deletions tests/webapp/api/test_csp_report.py
Original file line number Diff line number Diff line change
Expand Up @@ -7,11 +7,10 @@ def test_valid_report(client):
"""Tests that a correctly formed CSP violation report is accepted when unauthenticated."""
valid_report = {
"csp-report": {
"blocked-uri": "https://treestatus.mozilla-releng.net/trees/autoland",
"document-uri": "http://localhost:8000/",
"original-policy": "...",
"referrer": "",
"violated-directive": "connect-src",
# The Content Security Policy report is a dictionary as documented at
# https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP#violation_report_syntax
# The app only forwards the browser-generate CSP report to the
# endpoint for the reports.
}
}
response = client.post(
Expand Down

0 comments on commit e85d592

Please sign in to comment.