Content Security Policy explained | how to protect against Cross Site Scripting (XSS)

Описание: 🔥More exclusive content: https://productioncoder.com/you-decid...
Twitter:   / _jgoebel  
Blog: https://productioncoder.com
Website: https://jangoebel.com

In this video, we cover what Content Security Policy (CSP) is, why you need and how it protects against Cross Site Scripting. We look at Content Security Policy directives, what they do and how you can leverage them for your application. The main goal of Content Security Policy is to protect against Cross Site Scripting attacks. It does so by limiting the origins and urls from which certain assets (e.g. fonts, images, scripts) can be loaded. Content Security Policy can help to mitigate against stored or reflected XSS attack vectors.