edge badge
Namespace
Methods
B
I
N
P
R
S
U
Constants
MAPPINGS = { self: "'self'", unsafe_eval: "'unsafe-eval'", unsafe_inline: "'unsafe-inline'", none: "'none'", http: "http:", https: "https:", data: "data:", mediastream: "mediastream:", blob: "blob:", filesystem: "filesystem:", report_sample: "'report-sample'", strict_dynamic: "'strict-dynamic'" }.freeze
 
DIRECTIVES = { base_uri: "base-uri", child_src: "child-src", connect_src: "connect-src", default_src: "default-src", font_src: "font-src", form_action: "form-action", frame_ancestors: "frame-ancestors", frame_src: "frame-src", img_src: "img-src", manifest_src: "manifest-src", media_src: "media-src", object_src: "object-src", script_src: "script-src", style_src: "style-src", worker_src: "worker-src" }.freeze
 
Attributes
[R] directives
Class Public methods
new()
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 108
def initialize
  @directives = {}
  yield self if block_given?
end
Instance Public methods
block_all_mixed_content(enabled = true)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 127
def block_all_mixed_content(enabled = true)
  if enabled
    @directives["block-all-mixed-content"] = true
  else
    @directives.delete("block-all-mixed-content")
  end
end
build(context = nil)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 173
def build(context = nil)
  build_directives(context).compact.join("; ") + ";"
end
initialize_copy(other)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 113
def initialize_copy(other)
  @directives = other.directives.deep_dup
end
plugin_types(*types)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 135
def plugin_types(*types)
  if types.first
    @directives["plugin-types"] = types
  else
    @directives.delete("plugin-types")
  end
end
report_uri(uri)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 143
def report_uri(uri)
  @directives["report-uri"] = [uri]
end
require_sri_for(*types)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 147
def require_sri_for(*types)
  if types.first
    @directives["require-sri-for"] = types
  else
    @directives.delete("require-sri-for")
  end
end
sandbox(*values)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 155
def sandbox(*values)
  if values.empty?
    @directives["sandbox"] = true
  elsif values.first
    @directives["sandbox"] = values
  else
    @directives.delete("sandbox")
  end
end
upgrade_insecure_requests(enabled = true)
# File actionpack/lib/action_dispatch/http/content_security_policy.rb, line 165
def upgrade_insecure_requests(enabled = true)
  if enabled
    @directives["upgrade-insecure-requests"] = true
  else
    @directives.delete("upgrade-insecure-requests")
  end
end