SecurityPolicyViolationEvent: disposition property

The disposition read-only property of the SecurityPolicyViolationEvent interface indicates how the violated Content Security Policy (CSP) is configured to be treated by the user agent.

Value

Possible values are:

"enforce"

The policy is enforced and the resource request is blocked.

"report"

The violation is reported but the resource request is not blocked.

Examples

js
document.addEventListener("securitypolicyviolation", (e) => {
  console.log(e.disposition);
});

Specifications

Specification
Content Security Policy Level 3
# dom-securitypolicyviolationevent-disposition

Browser compatibility

BCD tables only load in the browser

See also