3 implementations of ContentSecurityPolicy
Microsoft.AspNetCore.Server.Kestrel.Core (3)
Internal\Http\HttpHeaders.Generated.cs (3)
2073StringValues IHeaderDictionary.ContentSecurityPolicy 10083StringValues IHeaderDictionary.ContentSecurityPolicy 16086StringValues IHeaderDictionary.ContentSecurityPolicy
2 writes to ContentSecurityPolicy
Aspire.Dashboard (1)
Model\BrowserSecurityHeadersMiddleware.cs (1)
69context.Response.Headers.ContentSecurityPolicy = context.Request.IsHttps
Microsoft.AspNetCore.Components.Server (1)
Builder\ServerRazorComponentsEndpointConventionBuilderExtensions.cs (1)
59headers.ContentSecurityPolicy = StringValues.Concat(headers.ContentSecurityPolicy, $"frame-ancestors {options.ContentSecurityFrameAncestorsPolicy}");
8 references to ContentSecurityPolicy
Aspire.Dashboard.Tests (7)
BrowserSecurityHeadersMiddlewareTests.cs (7)
28Assert.NotEqual(StringValues.Empty, httpContext.Response.Headers.ContentSecurityPolicy); 29Assert.DoesNotContain("default-src", httpContext.Response.Headers.ContentSecurityPolicy.ToString()); 43Assert.NotEqual(StringValues.Empty, httpContext.Response.Headers.ContentSecurityPolicy); 44Assert.Contains("default-src", httpContext.Response.Headers.ContentSecurityPolicy.ToString()); 61Assert.NotEqual(StringValues.Empty, httpContext.Response.Headers.ContentSecurityPolicy); 62Assert.Contains(expectedContent, httpContext.Response.Headers.ContentSecurityPolicy.ToString()); 80Assert.Equal(StringValues.Empty, httpContext.Response.Headers.ContentSecurityPolicy);
Microsoft.AspNetCore.Components.Server (1)
Builder\ServerRazorComponentsEndpointConventionBuilderExtensions.cs (1)
59headers.ContentSecurityPolicy = StringValues.Concat(headers.ContentSecurityPolicy, $"frame-ancestors {options.ContentSecurityFrameAncestorsPolicy}");