This is an experimental technology
Check the Browser compatibility table carefully before using this in production.
The csp property of the HTMLIFrameElement interface specifies the Content Security Policy that an embedded document must agree to enforce upon itself.
Syntax
var csp = HTMLIFrameElement.csp HTMLIFrameElement.csp = csp
Value
A content security policy.
Specifications
| Specification | Status | Comment |
|---|---|---|
| Content Security Policy: Embedded Enforcement The definition of 'csp' in that specification. |
Working Draft | Initial definition. |
Browser Compatibility
The compatibility table on this page is generated from structured data. If you'd like to contribute to the data, please check out https://github.com/mdn/browser-compat-data and send us a pull request.
Update compatibility data on GitHub
| Desktop | Mobile | |||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
csp | Chrome Full support 61 | Edge Full support ≤79 | Firefox ? | IE ? | Opera Full support 48 | Safari ? | WebView Android Full support 61 | Chrome Android Full support 61 | Firefox Android ? | Opera Android Full support 45 | Safari iOS ? | Samsung Internet Android Full support 8.0 |
Legend
- Full support
- Full support
- Compatibility unknown
- Compatibility unknown
- Experimental. Expect behavior to change in the future.
- Experimental. Expect behavior to change in the future.