public class ServerHttpSecurity.HeaderSpec.ContentSecurityPolicySpec
extends java.lang.Object
Content-Security-Policy
response header.ServerHttpSecurity.HeaderSpec.contentSecurityPolicy(String)
Modifier and Type | Method and Description |
---|---|
ServerHttpSecurity.HeaderSpec |
and()
Allows method chaining to continue configuring the
ServerHttpSecurity . |
ServerHttpSecurity.HeaderSpec |
policyDirectives(java.lang.String policyDirectives)
Sets the security policy directive(s) to be used in the response header.
|
ServerHttpSecurity.HeaderSpec |
reportOnly(boolean reportOnly)
Whether to include the
Content-Security-Policy-Report-Only header in
the response. |
public ServerHttpSecurity.HeaderSpec reportOnly(boolean reportOnly)
Content-Security-Policy-Report-Only
header in
the response. Otherwise, defaults to the Content-Security-Policy
header.reportOnly
- whether to only report policy violationsServerHttpSecurity.HeaderSpec
to continue configuringpublic ServerHttpSecurity.HeaderSpec policyDirectives(java.lang.String policyDirectives)
policyDirectives
- the security policy directive(s)ServerHttpSecurity.HeaderSpec
to continue configuringpublic ServerHttpSecurity.HeaderSpec and()
ServerHttpSecurity
.ServerHttpSecurity.HeaderSpec
to continue configuring