Content-Security-Policy Analysis for https://api.2fa.directory

Open Cached · just now

6 directives

Content-Security-Policy

Content-Security-Policy: script-src 'self' https://cdnjs.cloudflare.com; script-src-attr 'unsafe-hashes' 'sha256-1jAmyYXcRq6zFldLe/GCgIDJBiOONdXjTLgEFMDnDSM='; style-src 'self' 'unsafe-inline' https://cdnjs.cloudflare.com https://fonts.googleapis.com/css2; img-src 'self' https://api.2fa.directory https://cdnjs.cloudflare.com/ajax/libs/flag-icons/; font-src https://cdnjs.cloudflare.com https://fonts.gstatic.com/l/font; report-uri https://2factorauth.report-uri.com/r/d/csp/enforce;

script-src Keyword —

'self'

script-src Host

Cloudflare CDNJS

https://cdnjs.cloudflare.com

ASN | Cloudflare

script-src-attr Keyword —

'unsafe-hashes'

script-src-attr Hash —

'sha256-1jAmyYXcRq6zFldLe/GCgIDJBiOONdXjTLgEFMDnDSM='

style-src Keyword —

'self'

style-src Keyword —

'unsafe-inline'

style-src Host

Cloudflare CDNJS

https://cdnjs.cloudflare.com

ASN | Cloudflare

style-src Host

Google Fonts

https://fonts.googleapis.com/css2

img-src Keyword —

'self'

img-src Host —

https://api.2fa.directory

ASN | Cloudflare

img-src Host

Cloudflare CDNJS

https://cdnjs.cloudflare.com/ajax/libs/flag-icons/

ASN | Cloudflare

font-src Host

Cloudflare CDNJS

https://cdnjs.cloudflare.com

ASN | Cloudflare

font-src Host

Google Fonts

https://fonts.gstatic.com/l/font

report-uri Host

Report URI

https://2factorauth.report-uri.com/r/d/csp/enforce

ASN | Cloudflare

Content-Security-Policy-Report-Only

No report-only CSP headers found.