Safari content security policy support [closed]

冷暖自知 提交于 2019-12-25 09:43:40

问题


Where can I find out what content security policy (CSP) features are supported by the Safari browser?

I am getting error reports only for Safari and want to confirm whether or not Safari supports the policy I have in place.

My Policy:

base-uri; object-src; script-src https://*.example.com *.example.com 'nonce-LwhUCQNCuRTtk6dBXRpPjw==' 'strict-dynamic' 'unsafe-inline'; report-uri https://example.com/csp/report;",

回答1:


A few months later and I stumble upon my own unanswered question :(.

The best place to find out what is supported, that I've found, is Safari's release notes.

FWIW CSP 2.0 support was added in Safari 10.0.0



来源:https://stackoverflow.com/questions/44318505/safari-content-security-policy-support

易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!