support for multiple Content-Security-Policy directives via typed headers

**Is your feature request related to a problem? Please describe.**
The current implementation of the `ContentSecurityPolicy` header only supports a single directive.
This header typically includes multiple directives.

**Describe the solution you'd like**
I'd like for the CSP header to support multiple directives.

**Describe alternatives you've considered**
There are currently two workarounds;
1. Using `Header.Custom` and providing the full CSP as the value
2. Providing multiple CSP headers, each containing a single directive; however, [this is tricky and comes with gotchas](https://content-security-policy.com/examples/multiple-csp-headers/)

**Additional context**
[Mozilla](https://developer.mozilla.org/en-US/docs/Web/HTTP/Guides/CSP)
[CSP Quick Reference Guide](https://content-security-policy.com/)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Uh oh!

support for multiple Content-Security-Policy directives via typed headers #3719

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Uh oh!

Uh oh!

support for multiple Content-Security-Policy directives via typed headers #3719

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions