You are on the editable version of MDN Web Docs

View as an MDN Web Docs user:


This is an experimental technology
Check the Browser compatibility table carefully before using this in production.

The csp property of the HTMLIFrameElement interface specifies the Content Security Policy that an embedded document must agree to enforce upon itself.


var csp = HTMLIFrameElement.csp
HTMLIFrameElement.csp = csp


A content security policy.


Specification Status Comment
Content Security Policy: Embedded Enforcement
The definition of 'csp' in that specification.
Working Draft Initial definition.

Browser Compatibility

Update compatibility data on GitHub
ChromeEdgeFirefoxInternet ExplorerOperaSafariAndroid webviewChrome for AndroidFirefox for AndroidOpera for AndroidSafari on iOSSamsung Internet
Chrome Full support 61Edge Full support ≤79Firefox ? IE No support NoOpera Full support 48Safari ? WebView Android Full support 61Chrome Android Full support 61Firefox Android ? Opera Android Full support 45Safari iOS ? Samsung Internet Android Full support 8.0


Full support  
Full support
No support  
No support
Compatibility unknown  
Compatibility unknown
Experimental. Expect behavior to change in the future.
Experimental. Expect behavior to change in the future.

Document Tags and Contributors

Contributors to this page: mdnwebdocs-bot, Malvoz, fscholz, jpmedley
Last updated by: mdnwebdocs-bot,