AWS::CloudFront::ResponseHeadersPolicy ContentSecurityPolicy - AWS CloudFormation

AWS::CloudFront::ResponseHeadersPolicy ContentSecurityPolicy

The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

For more information about the Content-Security-Policy HTTP response header, see Content-Security-Policy in the MDN Web Docs.

Syntax

To declare this entity in your AWS CloudFormation template, use the following syntax:

JSON

{ "ContentSecurityPolicy" : String, "Override" : Boolean }

Properties

ContentSecurityPolicy

The policy directives and their values that CloudFront includes as values for the Content-Security-Policy HTTP response header.

Required: Yes

Type: String

Update requires: No interruption

Override

A Boolean that determines whether CloudFront overrides the Content-Security-Policy HTTP response header received from the origin with the one specified in this response headers policy.

Required: Yes

Type: Boolean

Update requires: No interruption