Item logo image for Disable Content-Security-Policy

Disable Content-Security-Policy

3.6(

89 ratings

)
ExtensionDeveloper Tools60,000 users
Item media 2 screenshot
Item media 1 screenshot
Item media 2 screenshot
Item media 1 screenshot
Item media 1 screenshot
Item media 2 screenshot

Overview

Disable Content-Security-Policy for web application testing. When the icon is colored, CSP headers are disabled.

Use at your own risk. This disables the Content-Security-Policy header for a tab. Use this when testing what resources a new third-party tag includes onto the page. Click the extension icon to disable Content-Security-Policy header for the tab. Click the extension icon again to re-enable Content-Security-Policy header. Use this only as a last resort. Disabling Content-Security-Policy means disabling features designed to protect you from cross-site scripting. Prefer to use report-uri which instructs the browser to send CSP violations to a URI. That allows you keep Content-Security-Policy enabled in your browser but still know what got blocked. https://report-uri.com is a free tool that gives you a web interface to inspect CSP violations on your site.

3.6 out of 589 ratings

Google doesn't verify reviews. Learn more about results and reviews.

Review's profile picture

Patrick LedbetterNov 19, 2024

Did not work in Chrome. "Refused to frame ______________ because an ancestor violates the following Content Security Policy directive" Works in Edge though..

Review's profile picture

hailong huJul 29, 2024

Very effective

1 person found this review to be helpful
Review's profile picture

en1ightJul 29, 2024

29 Jul 2024: its working. For those who messaged its not working: make sure you are using it correctly (you see "blocked:csp" agaist your request in network tab)

2 out of 2 found this helpful

Details

  • Version
    4.0.0
  • Updated
    September 3, 2024
  • Offered by
    Phil Grayson
  • Size
    29.02KiB
  • Languages
    2 languages
  • Developer
    Email
    phil@philgrayson.com
  • Non-trader
    This developer has not identified itself as a trader. For consumers in the European Union, please note that consumer rights do not apply to contracts between you and this developer.

Privacy

The developer has disclosed that it will not collect or use your data. To learn more, see the developer’s privacy policy.

This developer declares that your data is

  • Not being sold to third parties, outside of the approved use cases
  • Not being used or transferred for purposes that are unrelated to the item's core functionality
  • Not being used or transferred to determine creditworthiness or for lending purposes

Support

For help with questions, suggestions, or problems, please open this page on your desktop browser

Google apps