Built by Enterplic

Web ToolsCSP Generator

CSP Generator

Generate Content Security Policy headers with an interactive directive builder

All data stays in your browser

default-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

script-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

style-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

img-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

font-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

connect-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

frame-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

object-src

'self''unsafe-inline''unsafe-eval''none'https:data:blob:

HTTP Header

Content-Security-Policy: default-src 'self'

HTML Meta Tag

<meta http-equiv="Content-Security-Policy" content="default-src 'self'">

Policy String

default-src 'self'