chromium/src/third_party/blink/web_tests/fast/frames/resources/sandboxed-iframe-script-dynamic.html - manifest_repos/chromium_src - Git at Google

 <html>
 <head>
 <script>

     frame = window.top.document.getElementById('frame');

     // Setting the sandbox flag at runtime should not change whether scripts
     // are allowed in this document.

     frame.sandbox = 'allow-same-origin';   // NO allow-scripts

     ++window.top.allowedExecuted;

     // This means that new scripts (such as the onload handler below) should
     // continue to execute, even though the frame now has a sandbox attribute.

     function onload_hook()
     {
         ++window.top.allowedExecuted;
     };

 </script>
 </head>

 <body onload='onload_hook();'></body>
 </html>
	<html>
	<head>
	<script>

	frame = window.top.document.getElementById('frame');

	// Setting the sandbox flag at runtime should not change whether scripts
	// are allowed in this document.

	frame.sandbox = 'allow-same-origin'; // NO allow-scripts

	++window.top.allowedExecuted;

	// This means that new scripts (such as the onload handler below) should
	// continue to execute, even though the frame now has a sandbox attribute.

	function onload_hook()
	{
	++window.top.allowedExecuted;
	};

	</script>
	</head>

	<body onload='onload_hook();'></body>
	</html>