CSP Header Generator

Report-Only

default-src

script-src

style-src

img-src

font-src

connect-src

object-src

frame-ancestors

CSP 헤더

Content-Security-Policy: default-src 'self'; script-src 'self'; style-src 'self' 'unsafe-inline'; img-src 'self' data:; font-src 'self'; connect-src 'self'; object-src 'none'; frame-ancestors 'self'

Last updated: 2026 · Free online tool

What is CSP Header Generator?

Free online Content-Security-Policy header generator with a visual editor for directives like default-src and script-src, building a ready-to-deploy CSP string to harden your site against XSS attacks.

How to Use

1
Input — Enter the required data.
2
Check Results — Review the processing results.
3
Copy — Copy the results for use.

URL Parser Free online tool to parse URLs into components like protocol, host, port, path, query, and hash, and analyze query parameters. It auto-adds https:// when missing and uses the browser URL API for encoding.

Frequently Asked Questions

It is a free online tool to visually edit and generate Content-Security-Policy headers.

Yes, it is completely free and all processing is done in the browser.

No. All processing is done in the browser.

Yes, static data-based tools can be used offline.

Yes, the responsive design works properly on mobile devices.

CSP Header Generator

What is CSP Header Generator?

How to Use

Related Tools

Frequently Asked Questions