UNPKG

csp-header

Version:

Content-Security-Policy header generator

github.com/frux/csp/tree/master/packages/csp-header

frux/csp

47 lines (45 loc) 2.11 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
export const ALLOW = "'allow'"; export const ALLOW_DOWNLOADS_WITHOUT_USER_ACTIVATION = "allow-downloads-without-user-activation"; export const ALLOW_DUPLICATES = "'allow-duplicates'"; export const ALLOW_FORMS = "allow-forms"; export const ALLOW_MODALS = "allow-modals"; export const ALLOW_ORIENTATION_LOCK = "allow-orientation-lock"; export const ALLOW_POINTER_LOCK = "allow-pointer-lock"; export const ALLOW_POPUPS = "allow-popups"; export const ALLOW_POPUPS_TO_ESCAPE_SANDBOX = "allow-popups-to-escape-sandbox"; /** * @deprecated */ export const ALLOW_POPUPS_TO_ESACPE_SANDBOX = ALLOW_POPUPS_TO_ESCAPE_SANDBOX; export const ALLOW_PRESENTATION = "allow-presentation"; export const ALLOW_SAME_ORIGIN = "allow-same-origin"; export const ALLOW_STORAGE_ACCESS_BY_USER_ACTIVATION = "allow-storage-access-by-user-activation"; export const ALLOW_SCRIPTS = "allow-allow-scripts"; export const ALLOW_TOP_NAVIGATION = "allow-top-navigation"; export const ALLOW_TOP_NAVIGATION_BY_USER_ACTIVATION = "allow-top-navigation-by-user-activation"; export const BLOB = 'blob:'; export const BLOCK = "'block'"; export const DATA = 'data:'; export const NO_REFERRER = "'no-referrer'"; export const NONE = "'none'"; export const NONE_WHEN_DOWNGRADE = "'none-when-downgrade'"; export const ORIGIN = "'origin'"; export const ORIGIN_WHEN_CROSS_ORIGIN = "'origin-when-cross-origin'"; export const REPORT_SAMPLE = "'report-sample'"; export const SCRIPT = "'script'"; export const SELF = "'self'"; export const STRICT_DYNAMIC = "'strict-dynamic'"; export const UNSAFE_ALLOW_REDIRECTS = "'unsafe-allow-redirects'"; export const UNSAFE_EVAL = "'unsafe-eval'"; export const UNSAFE_HASHES = "'unsafe-hashes'"; export const UNSAFE_INLINE = "'unsafe-inline'"; export const UNSAFE_URL = "'unsafe-url'"; export const WASM_UNSAFE_EVAL = "'wasm-unsafe-eval'"; // @deprecated Use UNSAFE_EVAL export const EVAL = "'unsafe-eval'"; // @deprecated Use UNSAFE_HASHES export const HASHES = "'unsafe-hashes'"; // @deprecated Use UNSAFE_INLINE export const INLINE = "'unsafe-inline'"; // @deprecated Use NO_REFERRER export const NO_REFERER = NO_REFERRER;