This is an experimental technology
Check the Browser compatibility table carefully before using this in production.

The csp property of the HTMLIFrameElement interface specifies the Content Security Policy that an embedded document must agree to enforce upon itself.


var csp = HTMLIFrameElement.csp
HTMLIFrameElement.csp = csp


A content security policy.


Specification Status Comment
Content Security Policy: Embedded Enforcement
The definition of 'csp' in that specification.
Working Draft Initial definition.

Browser Compatibility

We're converting our compatibility data into a machine-readable JSON format. This compatibility table still uses the old format, because we haven't yet converted the data it contains. Find out how you can help!

Feature Chrome Firefox (Gecko) Internet Explorer Opera Safari (WebKit)
Basic support 61 ? ? 48 ?
Feature Android Webview Chrome for Android Firefox Mobile (Gecko) Firefox OS IE Mobile Opera Mobile Safari Mobile
Basic support 61 61 ? ? ? 48 ?

Document Tags and Contributors

 Contributors to this page: jpmedley
 Last updated by: jpmedley,