1.0.0-beta.7 • Published 11 months ago

@klnjs/content-security-policy v1.0.0-beta.7

Weekly downloads
-
License
MIT
Repository
github
Last release
11 months ago

@klnjs/content-security-policy

This module provides types and functionality for parsing and stringifying Content Security Policy (CSP).

Installation

Install the @klnjs/content-security-policy package using your preferred package manager.

npm install @klnjs/content-security-policy

How to Use

Importing

Import the module, and optionally the ContentSecurityPolicy type.

import CSP, { type ContentSecurityPolicy } from '@klnjs/content-security-policy'

Parsing

Parse a content security policy string into a ContentSecurityPolicy object with the parse method:

const policy = CSP.parse("default-src 'self'; img-src https://example.com")

Stringifying

Serialize a ContentSecurityPolicy object with the stringify method:

const value = CSP.stringify({
	'default-src': ["'self'"],
	'img-src': ['https://example.com']
})

Validation

Parsing will validate CSP directives and their source list.

If an invalid directive or source list is encountered during parsing, a SyntaxError is thrown.

try {
	const policy = CSP.parse("invalid-directive 'self'")
} catch (error) {
	console.error(error) // SyntaxError: ContentSecurityPolicy.parse: invalid directive "invalid-directive"
}
headersecuritycontent-security-policy
1.0.0-beta.7

11 months ago

1.0.0-beta.6

1 year ago

1.0.0-beta.5

1 year ago

1.0.0-wtf.4

1 year ago

1.0.0-beta.4

1 year ago

1.0.0-beta.3

1 year ago

1.0.0-beta.2

1 year ago