SecurityPolicyViolationEvent: blockedURI property

The blockedURI read-only property of the SecurityPolicyViolationEvent interface is a string representing the URI of the resource that was blocked because it violates a Content Security Policy (CSP).

Value

A string representing the URI of the blocked resource.

Examples

js
document.addEventListener("securitypolicyviolation", (e) => {
  console.log(e.blockedURI);
});

Specifications

Specification
Content Security Policy Level 3
# dom-securitypolicyviolationevent-blockeduri

Browser compatibility

BCD tables only load in the browser

See also