Defining Multiple Content-Security-Policy-Report-Only in Headers
Hey all, I'm defining a
I wanted to take advantage of https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#multiple_content_security_policies
and have something like
but Cloudflare automatically just appends the two with a
Any way I can achieve this?
_headersContent-Security-Policy-Report-OnlyI wanted to take advantage of https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#multiple_content_security_policies
and have something like
but Cloudflare automatically just appends the two with a
,Any way I can achieve this?
MDN Web Docs
The HTTP Content-Security-Policy response header allows
website administrators to control resources the user agent is allowed to load for a
given page. With a few exceptions, policies mostly involve specifying server origins and
script endpoints. This helps guard against cross-site scripting attacks
(Cross-site_scripting).
website administrators to control resources the user agent is allowed to load for a
given page. With a few exceptions, policies mostly involve specifying server origins and
script endpoints. This helps guard against cross-site scripting attacks
(Cross-site_scripting).
Welcome to the official Cloudflare Developers server. Here you can ask for help and stay updated with the latest news
86,942Members
Resources
Similar Threads
Was this page helpful?
