This trait is used by CSPActionBuilder and CSPFilter to apply the CSPResult to a
Play HTTP result as headers.
Appends as play.api.http.HeaderNames.CONTENT_SECURITY_POLICY or
play.api.http.HeaderNames.CONTENT_SECURITY_POLICY_REPORT_ONLY,
depending on config.reportOnly.
If cspResult.nonceHeader is defined then
play.api.http.HeaderNames.X_CONTENT_SECURITY_POLICY_NONCE_HEADER
is set as an additional header.
This trait is used by CSPActionBuilder and CSPFilter to apply the CSPResult to a Play HTTP result as headers.
Appends as
play.api.http.HeaderNames.CONTENT_SECURITY_POLICY
orplay.api.http.HeaderNames.CONTENT_SECURITY_POLICY_REPORT_ONLY
, depending on config.reportOnly.If
cspResult.nonceHeader
is defined thenplay.api.http.HeaderNames.X_CONTENT_SECURITY_POLICY_NONCE_HEADER
is set as an additional header.