Permissions-Policy: private-state-token-issuance directive

{{SeeCompatTable}}

The HTTP {{HTTPHeader("Permissions-Policy")}} header private-state-token-issuance directive controls usage of private state token token-request operations.

Specifically, where a defined policy blocks the use of this feature, token request operations will fail.

Syntax

Permissions-Policy: private-state-token-issuance=<allowlist>;

• <allowlist>
  • : A list of origins for which permission is granted to use the feature. See Permissions-Policy > Syntax for more details.

Default policy

The default allowlist for private-state-token-issuance is *.

Specifications

{{Specifications}}

Browser compatibility

{{Compat}}

See also

• {{HTTPHeader("Permissions-Policy")}} header
• Permissions Policy
• Private State Token API