A Web Developer’s Blog
I love the extra security CSP brings - but it’s still a bit new to me and I hadn’t setup reporting because this is a static site and I didn’t think I had anywhere easy to send the errors.
However I use Sentry for another project and realised that it offers easy CSP reporting.
Read more ...In the world of Web development the words “Best Practice” are often thrown about as if implementation was a trivial detail and giving the impression that everyone else must be doing all this already.
Then you implement these and find that it isn’t so trivial - especially when you try and combine each practice.
I wanted to experiment with making this site into a Progressive Web App (PWA) while maintaining good security through Content Security Policy (CSP) headers and long cache times for static assets.
