Disable Content-Security-Policy

3,6(

80 Bewertungen

)

Erweiterung Entwicklertools60.000 Nutzer

Übersicht

Disable Content-Security-Policy for web application testing. When the icon is colored, CSP headers are disabled.

Use at your own risk. This disables the Content-Security-Policy header for a tab. Use this when testing what resources a new third-party tag includes onto the page. Click the extension icon to disable Content-Security-Policy header for the tab. Click the extension icon again to re-enable Content-Security-Policy header. Use this only as a last resort. Disabling Content-Security-Policy means disabling features designed to protect you from cross-site scripting. Prefer to use report-uri which instructs the browser to send CSP violations to a URI. That allows you keep Content-Security-Policy enabled in your browser but still know what got blocked. https://report-uri.com is a free tool that gives you a web interface to inspect CSP violations on your site.

3,6 von 5
80 Bewertungen
Rezensionen werden von Google nicht überprüft. Weitere Informationen zu Suchergebnissen und Rezensionen.

Details

Version
3.0.0
Aktualisiert
6. Mai 2020
Bedenken melden
Angeboten von
Phil Grayson
Größe
23.53KiB
Sprachen
2 Sprachen
Kein Händler
Dieser Entwickler hat sich nicht als Händler deklariert. Für Verbraucher in der Europäischen Union gelten die Verbraucherrechte nicht für Verträge, die zwischen dir und diesem Entwickler geschlossen werden.

Datenschutz

Der Entwickler hat keine Informationen hinsichtlich der Erhebung oder Nutzung deiner Daten offengelegt.

Support

Ähnliche

Allow CORS: Access-Control-Allow-Origin

3,4(254)

Easily add (Access-Control-Allow-Origin: *) rule to the response header.

CSP Evaluator

3,2(24)

CSP Evaluator is a tool that allows developers to check if a Content Security Policy (CSP) serves as mitigation against XSS attacks.

Allow CSP: Content-Security-Policy

5,0(1)

Easily remove CSP (Content-Security-Policy) rules from the response header.

Tamper Chrome (extension)

3,3(234)

Allows the user to modify requests as they happen.

Always Disable Content-Security-Policy

3,7(15)

Always Disable Content-Security-Policy for web application testing. When the icon is colored, CSP headers are disabled.

Content Security Policy Override

4,2(9)

Modify the Content Security Policy of web pages.

CORS Unblock

4,2(138)

No more CORS error by appending 'Access-Control-Allow-Origin: *' header to local and remote web requests when enabled

Ignore X-Frame headers

4,4(143)

Drops X-Frame-Options and Content-Security-Policy HTTP response headers, allowing all pages to be iframed.

Content Security Policy (CSP) Generator

4,2(11)

Automatically generate content security policy headers online for any website.

Cross Domain - CORS

4,1(58)

Cross Domain will help you to deal with cross domain - CORS problem. This is tool helpful when face with cross domain issue.

Requestly - Intercept, Modify & Mock HTTP Requests

4,4(1090)

The easiest way to Redirect URLs, Modify HTTP Headers, Mock APIs, Inject custom JS, Modify GraphQL Requests

Resource Override

4,6(193)

An extension to help you gain full control of any website by redirecting traffic, replacing, editing, or inserting new content.