64 lines
2.1 KiB
JavaScript
64 lines
2.1 KiB
JavaScript
"use strict";
|
|
module.exports = {
|
|
directives: {
|
|
'base-uri': { type: 'sourceList' },
|
|
'block-all-mixed-content': { type: 'boolean' },
|
|
'child-src': { type: 'sourceList' },
|
|
'connect-src': { type: 'sourceList' },
|
|
'default-src': {
|
|
type: 'sourceList',
|
|
hasStrictDynamic: true,
|
|
},
|
|
'font-src': { type: 'sourceList' },
|
|
'form-action': { type: 'sourceList' },
|
|
'frame-ancestors': { type: 'sourceList' },
|
|
'frame-src': { type: 'sourceList' },
|
|
'img-src': { type: 'sourceList' },
|
|
'manifest-src': { type: 'sourceList' },
|
|
'media-src': { type: 'sourceList' },
|
|
'object-src': { type: 'sourceList' },
|
|
'script-src': {
|
|
type: 'sourceList',
|
|
hasUnsafes: true,
|
|
hasStrictDynamic: true,
|
|
},
|
|
'style-src': {
|
|
type: 'sourceList',
|
|
hasUnsafes: true,
|
|
},
|
|
'prefetch-src': { type: 'sourceList' },
|
|
'plugin-types': { type: 'pluginTypes' },
|
|
sandbox: { type: 'sandbox' },
|
|
'report-to': { type: 'reportUri' },
|
|
'report-uri': { type: 'reportUri' },
|
|
'require-sri-for': { type: 'requireSriFor' },
|
|
'upgrade-insecure-requests': { type: 'boolean' },
|
|
'worker-src': {
|
|
type: 'sourceList',
|
|
hasUnsafes: true,
|
|
},
|
|
},
|
|
allHeaders: [
|
|
'Content-Security-Policy',
|
|
'X-Content-Security-Policy',
|
|
'X-WebKit-CSP',
|
|
],
|
|
mustQuote: ['none', 'self', 'unsafe-inline', 'unsafe-eval', 'strict-dynamic'],
|
|
unsafes: ["'unsafe-inline'", 'unsafe-inline', "'unsafe-eval'", 'unsafe-eval'],
|
|
strictDynamics: ["'strict-dynamic'", 'strict-dynamic'],
|
|
requireSriForValues: ['script', 'style'],
|
|
sandboxDirectives: [
|
|
'allow-downloads-without-user-activation',
|
|
'allow-forms',
|
|
'allow-modals',
|
|
'allow-orientation-lock',
|
|
'allow-pointer-lock',
|
|
'allow-popups',
|
|
'allow-popups-to-escape-sandbox',
|
|
'allow-presentation',
|
|
'allow-same-origin',
|
|
'allow-scripts',
|
|
'allow-top-navigation',
|
|
],
|
|
};
|