SecurityPolicyViolationEvent: blockedURI property
Baseline Widely available
This feature is well established and works across many devices and browser versions. It’s been available across browsers since August 2016.
Note: This feature is available in Web Workers.
The blockedURI read-only property of the SecurityPolicyViolationEvent interface is a string representing the URI of the resource that was blocked because it violates a Content Security Policy (CSP).
Value
A string representing the URI of the blocked resource.
Examples
js
document.addEventListener("securitypolicyviolation", (e) => {
console.log(e.blockedURI);
});
Specifications
| Specification |
|---|
| Content Security Policy Level 3 # dom-securitypolicyviolationevent-blockeduri |
Browser compatibility
BCD tables only load in the browser