Element: securitypolicyviolation event
Baseline
Widely available
This feature is well established and works across many devices and browser versions. It’s been available across browsers since October 2018.
Thuộc tính securitypolicyviolation is fired when a Content Security Policy is violated.
The event is fired trên phần tử when there is a violation of the CSP policy.
This event bubbles to the Window object, and is composed.
Note:
You should generally add the handler for this event to a top level object (i.e., Window or Document).
While HTML elements can technically be the target of the securitypolicyviolation event, in reality this event does not fire on them—for example, a blocked <img> source directly triggers this event on document as the target, instead of bubbling from the <img> element.
Cú pháp
Use the event name in methods like addEventListener(), or set an event handler property.
addEventListener("securitypolicyviolation", (event) => { })
onsecuritypolicyviolation = (event) => { }
Event type
Một SecurityPolicyViolationEvent. Inherits from Event.
Ví dụ
Listening for securitypolicyviolation on Window
The code below shows how you might add an event handler function using the onsecuritypolicyviolation global event handler property or addEventListener() on the top level Window (you could use exactly the same approach on Document).
window.onsecuritypolicyviolation = (e) => {
// Handle SecurityPolicyViolationEvent e here
};
window.addEventListener("securitypolicyviolation", (e) => {
// Handle SecurityPolicyViolationEvent e here
});
Đặc tả kỹ thuật
| Specification |
|---|
| Content Security Policy Level 3 # eventdef-globaleventhandlers-securitypolicyviolation |
| HTML # handler-onsecuritypolicyviolation |
Trình duyệt hỗ trợ
Xem thêm
- The
securitypolicyviolationevent of theDocumentinterface - The
securitypolicyviolationevent of theWorkerGlobalScopeinterface - HTTP > Content Security Policy