public (string headerName, string headerValue) ToString(ICspNonceService nonceService)
{
string headerName;
if (ReportOnly)
{
headerName = "Content-Security-Policy-Report-Only";
}
else
{
headerName = "Content-Security-Policy";
}
var values = new List <string>
{
Default.ToString(nonceService),
Script.ToString(nonceService),
Style.ToString(nonceService),
#pragma warning disable CS0618 // Type or member is obsolete
Child.ToString(nonceService),
#pragma warning restore CS0618 // Type or member is obsolete
Connect.ToString(nonceService),
Manifest.ToString(nonceService),
Font.ToString(nonceService),
FormAction.ToString(nonceService),
Img.ToString(nonceService),
Media.ToString(nonceService),
Object.ToString(nonceService),
FrameAncestors.ToString(),
PluginTypes.ToString(),
Frame.ToString(nonceService),
Worker.ToString(nonceService),
Prefetch.ToString(nonceService),
BaseUri.ToString(nonceService),
RequireSri.ToString()
};
if (BlockAllMixedContent)
{
values.Insert(0, "block-all-mixed-content");
}
if (UpgradeInsecureRequests)
{
values.Insert(0, "upgrade-insecure-requests");
}
if (EnableSandbox)
{
values.Add(Sandbox.ToString());
}
if (ReportUri != null)
{
values.Add("report-uri " + ReportUri);
}
string headerValue = string.Join(";", values.Where(s => s.Length > 0));
return(headerName, headerValue);
}
public Tuple <string, string> ToString(ICspNonceService nonceService)
{
string headerName;
if (ReportOnly)
{
headerName = "Content-Security-Policy-Report-Only";
}
else
{
headerName = "Content-Security-Policy";
}
ICollection <string> values = new List <string>
{
DefaultSrc.ToString(nonceService),
ScriptSrc.ToString(nonceService),
StyleSrc.ToString(nonceService),
ChildSrc.ToString(nonceService),
ConnectSrc.ToString(nonceService),
FontSrc.ToString(nonceService),
FormAction.ToString(nonceService),
ImgSrc.ToString(nonceService),
MediaSrc.ToString(nonceService),
ObjectSrc.ToString(nonceService),
FrameAncestors.ToString(),
PluginTypes.ToString()
};
if (EnableSandbox)
{
values.Add(Sandbox.ToString());
}
if (ReportUri != null)
{
values.Add("report-uri " + ReportUri);
}
string headerValue = string.Join(";", values.Where(s => s.Length > 0));
return(new Tuple <string, string>(headerName, headerValue));
}
