1. Web
  2. Web APIs
  3. SecurityPolicyViolationEvent
  4. effectiveDirective

SecurityPolicyViolationEvent: effectiveDirective property

Baseline Widely available

This feature is well established and works across many devices and browser versions. It’s been available across browsers since ⁨October 2018⁩.

Note: This feature is available in Web Workers.

The effectiveDirective read-only property of the SecurityPolicyViolationEvent interface is a string representing the Content Security Policy (CSP) directive that was violated.

This supersedes SecurityPolicyViolationEvent.violatedDirective, its historical alias.

Value

A string representing the particular Content-Security-Policy directive that was violated.

Examples

js
document.addEventListener("securitypolicyviolation", (e) => {
  console.log(e.effectiveDirective);
});

Specifications

Specification
Content Security Policy Level 3
# dom-securitypolicyviolationevent-effectivedirective

Browser compatibility

See also

Help improve MDN

Learn how to contribute

This page was last modified on by MDN contributors.

View this page on GitHubReport a problem with this content