Lock in $30 Savings on PRO—Offer Ends Soon! ⏳

Content Security Policy in your Rails apps in 30s

Content Security Policy in your Rails apps in 30s

Content Security Policy (CSP) is an HTTP header that instructs the browser to limit loading of external assets, such as scripts, styles or media to specific sources. It is intended to prevent wide categories of attacks, such as cross-site scripting (XSS), click-jacking and other code injection. This feature is powerful because it prevents many common attacks that target your users’ browsers.
We explain why Content Security Policy is complex to use and how Sqreen provides a powerful feature to easily add it to your applications.

Jean-Baptiste Aviat

July 05, 2016
Tweet

More Decks by Jean-Baptiste Aviat

Other Decks in Programming

Transcript

  1. © Sqreen sqreen.io Yet, Content Security Policy is an awesome

    protection... XSS click-jacking code injection Rogue extensions
  2. Confidential & proprietary © Sqreen, 2015 sqreen.io Sqreen helps you

    set up and maintain your Content Security Policy