Early Preview
This is currently very much a preview. Please feel free to try things out,
but don't be upset if anything is not yet working. Feedback is welcome over on our
GitHub Dicussions page.
class Duende.IdentityServer.Configuration.CspOptions
Assembly: Duende.IdentityServer
Inheritance: object → CspOptions
Settings for Content Security Policy (CSP) headers emitted by IdentityServer on its interactive pages.
Properties
public
Models.CspLevel
Level
Gets or sets the CSP specification level used when generating Content Security Policy headers.
Remarks Defaults to <see cref="F:Duende.IdentityServer.Models.CspLevel.Two" /> . Set to <see cref="F:Duende.IdentityServer.Models.CspLevel.One" /> to accommodate
older browsers that do not support CSP Level 2 directives.
public
bool
AddDeprecatedHeader
Gets or sets a value indicating whether the legacy <c>X-Content-Security-Policy</c> header is emitted in
addition to the standards-based <c>Content-Security-Policy</c> header.
Remarks Defaults to <c>true</c> . The <c>X-Content-Security-Policy</c> header was used by older
browsers before the <c>Content-Security-Policy</c> header was standardized. Disable this
if you do not need to support those legacy browsers.
Methods
public
bool
Equals(object obj)
Inherited from object
protected
void
Finalize()
Inherited from object
public
int
GetHashCode()
Inherited from object
protected
object
MemberwiseClone()
Inherited from object
public
string
ToString()
Inherited from object