-
Notifications
You must be signed in to change notification settings - Fork 22.4k
/
index.md
29 lines (20 loc) · 1.04 KB
/
index.md
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
---
title: Document directive
slug: Glossary/Document_directive
page-type: glossary-definition
---
{{GlossarySidebar}}
In {{Glossary("CSP")}}, **document directives** are used in a {{HTTPHeader("Content-Security-Policy")}} header and govern the properties of a document or [worker](/en-US/docs/Web/API/Web_Workers_API) environment to which a policy applies.
Document directives don't fall back to the {{CSP("default-src")}} directive.
See [Document directives](/en-US/docs/Web/HTTP/Headers/Content-Security-Policy#document_directives) for a complete list.
## See also
- [Glossary](/en-US/docs/Glossary)
- {{Glossary("CSP")}}
- {{Glossary("Reporting directive")}}
- {{Glossary("Fetch directive")}}
- {{Glossary("Navigation directive")}}
- Reference
- <https://www.w3.org/TR/CSP/#directives-document>
- {{HTTPHeader("Content-Security-Policy/upgrade-insecure-requests", "upgrade-insecure-requests")}}
- {{HTTPHeader("Content-Security-Policy/block-all-mixed-content", "block-all-mixed-content")}}
- {{HTTPHeader("Content-Security-Policy")}}