security

CSP Header Generator

Generate Content Security Policy headers for your website.

Directives

default-src

script-src

style-src

img-src

font-src

connect-src

frame-src

object-src

base-uri

upgrade-insecure-requests block-all-mixed-content

Common values

'self' 'none' 'unsafe-inline' 'unsafe-eval' https: data: blob:

HTTP Header

HTML Meta Tag

Nginx Config