-
Notifications
You must be signed in to change notification settings - Fork 31
/
Copy pathCSP2.xml
11 lines (11 loc) · 1.02 KB
/
CSP2.xml
1
2
3
4
5
6
7
8
9
10
11
<?xml version="1.0" encoding="UTF-8" ?>
<service primary="W3C" secondary="TR" id="CSP2">
<title>Content Security Policy Level 2</title>
<documentation source="http://www.w3.org/TR/CSP2/">This document defines a policy language used to declare a set of content restrictions for a web resource, and a mechanism for transmitting the policy from a server to a client where the policy is enforced.</documentation>
<http-header def="Content-Security-Policy">
<documentation source="http://www.w3.org/TR/CSP2/#content-security-policy-header-field">The Content-Security-Policy header field is the preferred mechanism for delivering a policy.</documentation>
</http-header>
<http-header def="Content-Security-Policy-Report-Only">
<documentation source="http://www.w3.org/TR/CSP2/#content-security-policy-report-only-header-field">The Content-Security-Policy-Report-Only header field lets servers experiment with policies by monitoring (rather than enforcing) a policy.</documentation>
</http-header>
</service>