Uses of Class
com.helger.http.csp.CSPDirective
Packages that use CSPDirective
-
Uses of CSPDirective in com.helger.http.csp
Methods in com.helger.http.csp that return CSPDirectiveModifier and TypeMethodDescriptionstatic @NonNull CSPDirectiveCSPDirective.createBaseURI(@Nullable String sValue) Restricts the URLs which can be used in a document's <base> element.static @NonNull CSPDirectiveCSPDirective.createChildSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources for web workers and nested browsing contexts loaded using elements such as <frame> and <iframe>static @NonNull CSPDirectiveCSPDirective.createConnectSrc(@Nullable AbstractCSPSourceList<?> aValue) Applies to XMLHttpRequest (AJAX), WebSocket or EventSource.static @NonNull CSPDirectiveCSPDirective.createDefaultSrc(@Nullable AbstractCSPSourceList<?> aValue) The "default-src" is the default policy for loading content such as JavaScript, Images, CSS, Fonts, AJAX requests, Frames, HTML5 Media.static @NonNull CSPDirectiveCSPDirective.createFontSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources of fonts.static @NonNull CSPDirectiveCSPDirective.createFormAction(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources that can be used as a HTML <form> action.static @NonNull CSPDirectiveCSPDirective.createFrameAncestors(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources for embedding the resource using <frame> <iframe> <object> <embed> <applet>.static @NonNull CSPDirectiveCSPDirective.createFrameSrc(@Nullable AbstractCSPSourceList<?> aValue) The HTTP Content-Security-Policy (CSP) "frame-src" directive specifies valid sources for nested browsing contexts loading using elements such as <frame> and <iframe>.static @NonNull CSPDirectiveCSPDirective.createImgSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources of images.static @NonNull CSPDirectiveCSPDirective.createManifestSrc(@Nullable AbstractCSPSourceList<?> aValue) Specifies valid sources of application manifest files.static @NonNull CSPDirectiveCSPDirective.createMediaSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources of audio and video, eg HTML5 <audio>, <video> elements.static @NonNull CSPDirectiveCSPDirective.createObjectSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources of plugins, eg <object>, <embed> or <applet>.static @NonNull CSPDirectiveCSPDirective.createPrefetchSrc(@Nullable AbstractCSPSourceList<?> aValue) Deprecated, for removal: This API element is subject to removal in a future version.static @NonNull CSPDirectiveCSPDirective.createReportTo(@Nullable String sValue) The Content-Security-Policy "report-to" directive indicates the name of the endpoint that the browser should use for reporting CSP violations.static @NonNull CSPDirectiveCSPDirective.createReportURI(@Nullable String sValue) The report-uri directive specifies a URI to which the user agent sends reports about policy violation.
Deprecated in favour ofcreateReportTo(String)but browser support is not yet ideal.static @NonNull CSPDirectiveCSPDirective.createSandbox(@Nullable String sValue) The sandbox directive specifies an HTML sandbox policy that the user agent applies to the protected resource.static @NonNull CSPDirectiveCSPDirective.createScriptSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources of JavaScript.static @NonNull CSPDirectiveCSPDirective.createScriptSrcAttr(@Nullable AbstractCSPSourceList<?> aValue) The HTTP Content-Security-Policy (CSP) "script-src-attr" directive specifies valid sources for JavaScript inline event handlers.static @NonNull CSPDirectiveCSPDirective.createScriptSrcElem(@Nullable AbstractCSPSourceList<?> aValue) The HTTP Content-Security-Policy (CSP) "script-src-elem" directive specifies valid sources for JavaScript <script> elements.static @NonNull CSPDirectiveCSPDirective.createStyleSrc(@Nullable AbstractCSPSourceList<?> aValue) Defines valid sources of stylesheets.static @NonNull CSPDirectiveCSPDirective.createStyleSrcAttr(@Nullable AbstractCSPSourceList<?> aValue) The HTTP Content-Security-Policy (CSP) "style-src-attr" directive specifies valid sources for inline styles applied to individual DOM elements.static @NonNull CSPDirectiveCSPDirective.createStyleSrcElem(@Nullable AbstractCSPSourceList<?> aValue) The HTTP Content-Security-Policy (CSP) "style-src-elem" directive specifies valid sources for stylesheet<style>elements and<link>elements withrel="stylesheet".static @NonNull CSPDirectiveCSPDirective.createWorkerSrc(@Nullable AbstractCSPSourceList<?> aValue) Specifies valid sources for Worker, SharedWorker, or ServiceWorker scripts.