W3TC and Content Security Policy

  • Resolved amanandhishoe

    (@amanandhishoe)


    4 years, 9 months ago

    I am working on setting up a content security policy for my site. Documentation about this says to avoid inline script and css, but with WordPress and W3 Total Cache, most everything becomes inline script and css. I can set a content security policy to allow ‘unsafe-inline’ but from what I read, that greatly diminishes the strength of my content security policy.
    Any suggestions as to how to set a strong content security policy while using W3TC would be appreciated.
    I am using WordFence Premium to protect my site so maybe I am worrying needlessly.

Viewing 1 replies (of 1 total)
  • Plugin Contributor Marko Vasiljevic

    (@vmarko)

    Hello @amanandhishoe

    Thank you for your inquiry and I am happy to answer this.
    It all depends on your needs and what you want to achieve. W3 Total Cache allows you to tweak and adjust your settings that best suits your needs.
    So, W3 Total Cache offers you multiple options for this but I cannot suggest what would be the most optimal usage for your use-case. That is for you to determine.
    In most cases, WordFence should be enough.
    Thanks!

Viewing 1 replies (of 1 total)
  • The topic ‘W3TC and Content Security Policy’ is closed to new replies.