For CSP and XSS plugin supports report logging with 2 database tables to store reports from browsers..
For CSP, plugin allows you to set rules for all supported directives, additional settings including setting the in Report or Live mode.
Plugin also includes special extensions that can fill CSP rules for Google services you might be using on your website ..
Plugin can add all the generated headers into .HTACCESS file, and they will be applied to all files, not just WordPress generated content.
If your website is not using Apache, all rules are generated with each page request and will work with any server type..
Plugin should work with PHP 5.3, 5.4 and 5.5, but these versions are no longer used for testing, and they are no longer supported..
Activate the plugin through 'Plugins WordPress...
In Multisite installation, plugin is available for configuration on the Network level, and headers are configured for all sites in the network at once...
In Multisite installation, plugin panel is in the Network administration...
Interested in development.., check out SVN repository, or subscribe to the development log by RSS...
Read more