-
Notifications
You must be signed in to change notification settings - Fork 1
Directive: webrtc
Ryan Parman edited this page Jun 14, 2024
·
7 revisions
The webrtc directive restricts whether connections may be established via WebRTC.
No local ICE candidates will be surfaced, as no STUN checks will be made against the ICE server provided to the peer connection negotiated below; No connectivity-checks will be attempted to any remote candidates provided by JS; The connectionState will never transition to "connected" and instead transition directly from its initial state of "new" to "failed" shortly.
It supports a value of 'allow' or 'block'.
webrtc 'allow'
❌ webrtc does not fallback to default-src.
-
CSP-0600 — [ERROR] directive
%shas an invalid value%s -
CSP-0601 — [ERROR] directive
webrtcmay only have a single value
ABNF (CSP3)
directive-name = "webrtc"
directive-value = "'allow'" / "'block'"Content licensed under CC BY-SA.
- 🧪 Experimental, with limited support
⚠️ Important notes on usage- 🚫 Deprecated or obsolete
- base-uri
- block-all-mixed-content 🚫
- child-src
- connect-src
- default-src
- fenced-frame-src 🧪
- font-src
- form-action
- frame-ancestors
- frame-src
- img-src
- manifest-src
- media-src
- navigate-to 🚫
- object-src
- plugin-types 🚫
- prefetch-src 🚫
- referrer 🚫
- report-to 🧪
-
report-uri
⚠️ - require-trusted-types-for 🧪
- sandbox
- script-src-attr
- script-src-elem
- script-src
- style-src-attr
- style-src-elem
- style-src
- trusted-types 🧪
- upgrade-insecure-requests
- webrtc
- worker-src