CSP Generator
Build a Content Security Policy header from per-domain rules
Starting point only
| Directive | Sources |
|---|---|
default-src | |
script-src | |
style-src | |
img-src | |
connect-src | |
font-src | |
frame-src | |
media-src |
Content-Security-Policy header
default-src 'self'; script-src 'self'; style-src 'self'; img-src 'self' data:; connect-src 'self'; font-src 'self'; frame-src 'none'; media-src 'self'
Verify outputs before using in production. No warranty โ see Terms.