From 4ec126e12dcdbdd41b69e47649938f77339e908f Mon Sep 17 00:00:00 2001 From: Dan Bailey Date: Thu, 19 Aug 2021 13:36:54 -0500 Subject: [PATCH] Update README.md --- README.md | 8 +++++++- 1 file changed, 7 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index b6a25d1..3de6efd 100644 --- a/README.md +++ b/README.md @@ -1 +1,7 @@ -# wordpress-csp-example \ No newline at end of file +# wordpress-csp-example + +This file serves as an example in how to insert headers into the front-end of your Wordpress build. This is useful for sending things like a Content Security Policy (shown) when you don't or can't mess around with your server settings. Or if you need to do dynamic generation of a nonce (also shown) for inline signing of Javascript. + +You can certainly add whatever other headers you'd like instead, should be pretty straightforward. + +To implement this, you'll need to update the chunks of the CSP variables, and drop this into your functions.php file. Up near the top, ideally.