테토리 툴

CSP 정책 빌더

Content Security Policy를 쉽게 작성

프리셋

가져오기

디렉티브

default-srcDefault fallback for other directives
'self'
script-srcRestricts JavaScript sources
'self''unsafe-inline'
style-srcRestricts CSS sources
'self''unsafe-inline'
img-srcRestricts image sources
'self'https:data:
font-srcRestricts font sources
'self'https:
connect-srcRestricts fetch/XHR/WebSocket connections
'self'https:
frame-ancestorsRestricts parents that can embed this page
'self'
object-srcRestricts plugins (Flash, etc.)
'none'

출력