Content Security Policy

https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/CSP

"Content Security Policy (CSP) is a feature that helps to prevent or minimize the risk of certain types of security threats. It consists of a series of instructions from a website to a browser, which instruct the browser to place restrictions on the things that the code comprising the site is allowed to do.

The primary use case for CSP is to control which resources, in particular JavaScript resources, a document is allowed to load. This is mainly used as a defense against cross-site scripting (XSS) attacks, in which an attacker is able to inject malicious code into the victim's site."

There is a Modern Drupal module for this. But, I don't recall seeing anything for Drupal 7 or Backdrop CMS. Has anyone done any work on this? How have you handled it?

https://www.drupal.org/project/csp

Comments

I just found that there was another Drupal 7 module.
https://www.drupal.org/project/seckit

And there is a Backdrop version of it.
https://github.com/backdrop-contrib/seckit

Backdrop LIVE

April 3-4, 2025

An interactive online event for anyone interested in Backdrop CMS. Everyone is welcome.

Comments

Backdrop LIVE

April 3-4, 2025

Recent topics

update block doesn't work ( bug ? )

site gone after upload the whole backdrop latest version through ftp

Best way for migration from Drupal 6/7 Core Profile to Backdrop Profile (Profile2)?

How to create Anchor Link for a page ?

Alphabet list not available from ckeditor ?

Recent comments

site gone after upload the whole backdrop latest version through ftp

Best way for migration from Drupal 6/7 Core Profile to Backdrop Profile (Profile2)?

site gone after upload the whole backdrop latest version through ftp

site gone after upload the whole backdrop latest version through ftp

site gone after upload the whole backdrop latest version through ftp