CSP Tester

This extension for Firefox and Chromium based browsers helps web developers to test web application functionality with Content Security Policy (version 2.0) enabled.

Typical workflow looks like:

  1. Open the extension window by clicking on the toolbar icon
  2. Add into the URL Pattern a regular expression for the site that you want to test, for example *://yoursite.com/* (CSP Tester uses Chrome Match Patterns)
  3. Tick the e.g. "self" checkbox, check "Active" and Save the changes
  4. Open the Developer Tools and navigate to the tested site
  5. Confirm a number of CSP violations reported in the Developer Tools Console as well as possible visual changes
  6. Make changes in the policy based on these reports

You can install CSP Tester from Firefox's AMO or Google Chrome Web Store. The license is GPLv2. Feel free to review the source code and report issues (and sent PRs ;) at GitHub