Design / Content-Security-Policy-Report-Only-Pin (W3C TR http://www.w3.org/TR/csp-pinning)
The Content-Security-Policy-Report-Only-Pin header field is the mechanism for delivering a pinned policy that the user agent MUST monitor for any resource which is not delivered with a Content-Security-Policy-Report-Only header (as described in the "Pin a policy to response" algorithm).
Notes: |
|
|
|