Report-Only CSP | ww.wp.xz.cn

dbgloo
(@dbgloo)

8 months, 1 week ago

Content Security Policy allows you to enable a report-only mode.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Content-Security-Policy-Report-Only

To my understanding, you could have both an active content security policy and a separate CSP-Report-Only that each have unique policy settings. You could use the latter for testing purposes. This plugin doesn’t seem to support report-only. Am I wrong, or when will it be supported? Thanks.

PS: I’m not referring to the reporting uri, which is a different feature.

The topic ‘Report-Only CSP’ is closed to new replies.

0 replies
1 participant
Last reply from: dbgloo
Last activity: 8 months, 1 week ago
Status: not resolved