content-security-policy Archives

HTML, Programming

IT Nursery

What’s the purpose of the HTML “nonce” attribute for script and style elements?

W3C says there is a new attribute in HTML5.1 called nonce for style and script that can be used by the Content Security Policy of a website. I googled...

May 29, 2022
0 Comments

How does Content Security Policy (CSP) work?

I’m getting a bunch of errors in the developer console: Refused to evaluate a string Refused to execute inline script because it violates the following Content Security Policy directive...

May 15, 2022
0 Comments

Content Security Policy “data” not working for base64 Images in Chrome 28

In this simple example, I’m trying to set a CSP header with the meta http-equiv header. I included a base64 image and I’m trying to make Chrome load the...

May 12, 2022
0 Comments