The Content-Security-Policy header field is the preferred mechanism for delivering a policy. (W3C TR http://www.w3.org/TR/CSP2: Content Security Policy Level 2)

The Content-Security-Policy HTTP response header field is the preferred mechanism for delivering a policy from a server to a client. (W3C TR http://www.w3.org/TR/CSP3: Content Security Policy Level 3)


JSON

Return to list of all ( HTTP Header Fields | Web Concepts )