SecurityPolicyViolationEvent.blockedURI

Experimental: This is an experimental technology
Check the Browser compatibility table carefully before using this in production.

The blockedURI read-only property of the SecurityPolicyViolationEvent interface is a USVString representing the URI of the resource that was blocked because it violates a policy.

Syntax

let blockedURI = violationEventInstance.blockedURI;

Value

A USVString representing the URI of the blocked resource.

Example

document.addEventListener("securitypolicyviolation", (e) => {
  console.log(e.blockedURI);
});

Specifications

Specification
Content Security Policy Level 3 (Content Security Policy 3)
# dom-securitypolicyviolationevent-blockeduri

Browser compatibility

BCD tables only load in the browser

See also