permissions-policy

Middleware to set the Permissions-Policy HTTP header

0.6.0
latest
Source
npm

Version published: 4 years ago

Weekly downloads: 11K; increased by49.82%

Maintainers: 1

Weekly downloads

Created: 4 years ago

Source

Permissions Policy

NOTE: Since the Feature-Policy header was deprecated I've decided to adapt the old Evan Hahn Permissions-Policy repository, this project was entirely built on top of his work.

This is a Express middleware to set the Permissions-Policy header. You can read more about it here.

To use:

const permissionsPolicy = require("permissions-policy");

// ...

app.use(
  permissionsPolicy({
    features: {
      fullscreen: ["self"], // fullscreen=()
      vibrate: ["none"], // vibrate=(none)
      payment: ["self", '"example.com"'], // payment=(self "example.com")
      syncXhr: [], // syncXhr=()
    },
  })
);

The following features are currently supported:

accelerometer
ambientLightSensor
autoplay
battery
camera
displayCapture
documentDomain
documentWrite
encryptedMedia
executionWhileNotRendered
executionWhileOutOfViewport
fontDisplayLateSwap
fullscreen
geolocation
gyroscope
interestCohort
layoutAnimations
legacyImageFormats
loadingFrameDefaultEager
magnetometer
microphone
midi
navigationOverride
notifications
oversizedImages
payment
pictureInPicture
publickeyCredentials
push
serial
speaker
syncScript
syncXhr
unoptimizedImages
unoptimizedLosslessImages
unoptimizedLossyImages
unsizedMedia
usb
verticalScroll
vibrate
vr
wakeLock
xr
xrSpatialTracking

Keywords

FAQs

What is permissions-policy?

Is permissions-policy popular?

Is permissions-policy well maintained?

Package last updated on 19 Apr 2021

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install