This is an experimental technology
Check the Browser compatibility table carefully before using this in production.

The csp property of the HTMLIFrameElement interface specifies the Content Security Policy that an embedded document must agree to enforce upon itself.


var csp = HTMLIFrameElement.csp
HTMLIFrameElement.csp = csp


A content security policy.


Specification Status Comment
Content Security Policy: Embedded Enforcement
The definition of 'csp' in that specification.
Working Draft Initial definition.

Browser Compatibility

FeatureChromeEdgeFirefoxInternet ExplorerOperaSafari
Basic support61 ? ? ?48 ?
FeatureAndroid webviewChrome for AndroidEdge mobileFirefox for AndroidOpera AndroidiOS SafariSamsung Internet
Basic support6161 ? ?48 ? ?

Document Tags and Contributors

Contributors to this page: fscholz, jpmedley
Last updated by: fscholz,