content_security_policy/
content_security_policy.rs

1use armor::csp;
2
3fn main() {
4    let mut policy = armor::csp::new();
5    policy
6        .default_src(csp::Source::SameOrigin)
7        .default_src("areweasyncyet.rs")
8        .script_src(csp::Source::SameOrigin)
9        .script_src(csp::Source::UnsafeInline)
10        .object_src(csp::Source::None)
11        .base_uri(csp::Source::None)
12        .upgrade_insecure_requests();
13    let mut headers = http::HeaderMap::new();
14    armor::armor(&mut headers);
15    policy.apply(&mut headers);
16
17    assert_eq!(headers["content-security-policy"], "base-uri 'none'; default-src 'self' areweasyncyet.rs; object-src 'none'; script-src 'self' 'unsafe-inline'; upgrade-insecure-requests");
18}

content_security_policy/content_security_policy.rs

content_security_policy/
content_security_policy.rs