deployecommerce/magento2-csp-parser

A library which will parse a Magento 2 CSP whitelist file into a structured array.

Maintainers

Details

github.com/DeployEcommerce/magento2-csp-parser

Source

Issues

Installs: 4

Dependents: 0

Suggesters: 0

Security: 0

Stars: 0

Watchers: 1

Forks: 0

Open Issues: 0

0.0.1 2025-04-02 14:27 UTC

Requires

  • ext-simplexml: *

OSL-3.0 b71efb81f6a983c7e6e5f94c01f23d75294933cc

httpsecurityparserheadersmagentoadobecommercecspcontent-security-policymagento2pci

This package is auto-updated.

Last update: 2025-04-02 14:27:36 UTC

README

This library is a simple CSP parser for Magento 2.

It can be used to parse an existing csp_whitelist.xml file and return you a structured array.

Create a parser instance and call the parse method with the contents of your file:

$xml = file_get_contents('csp_whitelist.xml');

$parser = new \DeployEcommerce\Csp\Parser\Magento2CspParser();
$policies = $parser->parse($xml);

An array will be returned containing the parsed elements:

  "style-src" => array:6 [▼
    0 => array:4 [▼
      "type" => "host"
      "name" => "hotjar"
      "value" => "*.hotjar.com"
      "directive" => "style-src"
    ]
    1 => array:4 [▼
      "type" => "host"
      "name" => "gmaps"
      "value" => "maps.googleapis.com"
      "directive" => "style-src"
    ]
    2 => array:4 [▼
      "type" => "host"
      "name" => "cookiebot"
      "value" => "*.cookiebot.com"
      "directive" => "style-src"
    ]
  ]
  "font-src" => array:5 [▶]
  "img-src" => array:15 [▶]
  "frame-src" => array:7 [▶]
  "media-src" => array:7 [▶]
  "connect-src" => array:17 [▶]
  "form-action" => array:2 [▶]
]

This can be used in conjunction with the DeployEcommerce/magento2-csp-writer package to generate a CSP file as well.