Content Security Policy or CSP is a technique to mitigate certain types of web attacks in the browser. Whether you are testing a web app or developing a website, temporarily disabling CSP rules may be needed. Use this website to see if CSP rules are allowed or blocked in your browser.
Click the below buttons to see if CSP rules are active or not in your browser. Currently, five rules are implemented here.
Test CSP is a web app that tells you whether you can bypass the preset content security policy rules or not. Click on each button to see if the present CSP rule is functional or not. You can add plugins to your browser to disable these rules then press these buttons to see if the plugin or addon is working properly or not. Allowing CSP is sometimes needed for web development therefore, having a plugin or addon to temporarily disable them might be needed. This web application helps you to verify the functionality of these plugins or addons. When you load this page without any addons installed, you will see a red error message saying the CSP prevented the resources from loading. However, with a proper addon, all three tests should pass successfully and a green message should be shown.
Content Security Policy (CSP) is a security measure designed to mitigate certain types of web attacks (i.e. cross-site scripting). To enable CSP, websites generally use a specific type of HTTP header in the webserver. Sometimes, there might be a need to temporarily disable these CSP rules (i.e. web development). This web application helps you to see if these rules are properly disabled or not (via a third-party plugin or addon).
Many addons/plugins allow you to disable CSP rules in your browser. Please head to Chrome, Firefox, or Opera add-on stores and search for the - Allow CSP - keyword. Choose a desired extension from the list, and then add it to your browser. Then click on one of the test buttons above. Repeat this procedure once the addon is disabled, and compare the results. Please note that try to keep the CSP third-party add-ons disabled all the time and only use them once you need them; because many websites may encounter errors or face problems if CSP rule(s) is disabled in your browser.