OptionalpolicyDefines what policy to use for remote resources.
OptionalwhitelistOnly used if policy type is set to WHITELIST.
Defines a list of directives with sources according to the Content-Security-Policy standard. Please see https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Security-Policy# for more information
Options that defines if content-documents can load remote resources. What type of remote resources they can load, and from where these can be loaded.
Please note that you may need to specify directives in your app's Content-Security-Policy as a element or as a HTTP header as well since these are inherited by child iframes used for rendering content-documents.