Which of the following is NOT a directive that can be used in a Content Security Policy?

  • script-src
  • font-src
  • cookie-policy
  • frame-ancestors
"cookie-policy" is not a valid directive in a Content Security Policy (CSP). CSPs define directives to control the sources from which certain types of content can be loaded. The other options like "script-src," "font-src," and "frame-ancestors" are valid directives used in CSP for different content types.
Add your answer
Loading...

Leave a comment

Your email address will not be published. Required fields are marked *