Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/teppeis/csp-report

Content Security Policy report viewer
https://github.com/teppeis/csp-report

Last synced: 11 days ago
JSON representation

Content Security Policy report viewer

Awesome Lists containing this project

README

        

csp-report
====

## Usage

```bash
$ npm install
$ npm start
```

Specify `http://localhost:3001/report` as `report-uri` of CSP header.
ex): `Content-Security-Policy: script-src 'self'; report-uri http://localhost:3001/report`

Open `http://localhost:3001` (CSP Reporter) in your browser.
When CSP violation is reported, it is dynamically displayed with websocket.

![screen](./misc/screen.png)

## Violation Demo

`http://localhost:3001/csp-demo` is a CSP violation demo page.
If you open it in a CSP-supported browser, it reports a violation to the CSP Reporter.