content-security-policy-builder
Version:
Build Content Security Policy directives.
34 lines (26 loc) • 884 B
Markdown
# Content Security Policy builder
Take an object and turn it into a Content Security Policy string.
It can handle a lot of things you can you throw at it; `camelCased` or
`dash-separated` directives, arrays or strings, et cetera.
Usage:
```javascript
import builder from "content-security-policy-builder";
// default-src 'self' default.com; script-src scripts.com; whatever-src something; object-src
builder({
directives: {
defaultSrc: ["'self'", "default.com"],
scriptSrc: "scripts.com",
"whatever-src": "something",
objectSrc: true,
},
});
// default-src 'self'; whatever-src something
builder({
directives: new Map([
["defaultSrc", ["'self'", "default.com"]],
["whatever-src", "something"],
]),
});
```
This module is considered complete. I expect to continue maintenance if needed,
but I don't plan to add features or make breaking changes.