Report URI JS
What is Report URI JS?
CSP reporting is incredibly powerful but not all website can set or control their HTTP response headers. For those on hosted solution like GitHub Pages or Ghost Pro you can only control the content of your pages. Report URI JS allows you to deploy CSP reporting on these sites where you previously couldn't do so.
By hooking the SecurityPolicyViolation
event fired when a CSP rule is broken our JS library can dispatch reports to your Report URI account and save you from missing out on valuable data.
Getting Started
We have an excellent demo of Report URI JS in action over on our GitHub Pages site, the perfect place to show exactly how Report URI JS works. The page contains all of the details and instructions you need to get started and can be found here: https://report-uri.github.io/report-uri-js-demo/
Useful Links
https://scotthelme.co.uk/launching-report-uri-js/
https://www.w3.org/TR/CSP2/#securitypolicyviolationevent-interface