Permissions‑Policy Header Generator - Online Security Config

Permissions-Policy Header Generator

Configure browser feature permissions for your website. Generate a secure Permissions-Policy HTTP header to control which APIs and features are available to your pages and third-party content.

Presets:

0 configured

accelerometer Access to device accelerometer sensor data

ambient-light-sensor Access to ambient light sensor readings

geolocation Access to Geolocation API for user location

gyroscope Access to device gyroscope sensor data

magnetometer Access to device magnetometer sensor data

autoplay Control autoplay of media with audio

camera Access to video camera / webcam

display-capture Screen capture via getDisplayMedia API

encrypted-media Encrypted Media Extensions (DRM) access

fullscreen Ability to enter fullscreen mode

microphone Access to microphone audio input

picture-in-picture Picture-in-Picture video mode

speaker-selection Audio output device selection API

bluetooth Web Bluetooth API access

gamepad Gamepad API for controller input

hid WebHID API for Human Interface Devices

keyboard-map Keyboard Map API for key layout detection

midi Web MIDI API for musical instruments

serial Web Serial API for serial port devices

usb WebUSB API for USB device access

clipboard-read Read from system clipboard

clipboard-write Write to system clipboard

idle-detection Idle Detection API for user activity state

local-fonts Local Font Access API for system fonts

payment Payment Request API for web payments

screen-wake-lock Screen Wake Lock API to prevent screen dimming

storage-access Storage Access API for cross-origin cookies

sync-xhr Synchronous XMLHttpRequest requests

web-share Web Share API for native sharing

browsing-topics Topics API for interest-based advertising Experimental

cross-origin-isolated Cross-Origin Isolation for SharedArrayBuffer

document-domain Ability to set document.domain (legacy)

otp-credentials WebOTP API for SMS-based OTP retrieval

publickey-credentials-get WebAuthn get() for authentication

window-management Window Management API for multi-screen layouts

xr-spatial-tracking WebXR spatial tracking for VR/AR

Generated Header 0 configured

Configure permissions above to generate the header...

Frequently Asked Questions

The Permissions-Policy header (formerly known as Feature-Policy) is a security mechanism that allows web developers to control which browser features and APIs can be used by their website and embedded third-party content. By setting this header, you can enable, disable, or restrict access to features like camera, microphone, geolocation, and more — either for your own origin or for cross-origin iframes. This helps protect user privacy and reduce the attack surface of your web application.

Feature-Policy was the original header name, introduced in 2018. In 2020, the specification was renamed to Permissions-Policy with an updated syntax and broader scope. Key differences include:

Syntax: Feature-Policy used a whitelist-based syntax with semicolons; Permissions-Policy uses a structured field format with commas.
Default allowlist: Permissions-Policy defaults to * (allow all) for most features, whereas Feature-Policy had varying defaults.
Scope: Permissions-Policy covers more features and is actively maintained by the W3C.

Modern browsers support both headers for backward compatibility, but Permissions-Policy is the recommended standard going forward.

Apache (.htaccess or httpd.conf):

Header always set Permissions-Policy "camera=self, microphone=()"

Nginx:

add_header Permissions-Policy "camera=self, microphone=()";

Cloudflare / CDN: Most CDNs allow adding custom HTTP headers through their dashboard or configuration files.

Use the Nginx and Apache copy buttons above to get server-specific formatted output.

* (Allow All): The feature is allowed in all browsing contexts, including cross-origin iframes. This is the default for most features.
self (Self Only): The feature is only allowed in same-origin browsing contexts and not in cross-origin iframes.
() (Block All / None): The feature is completely blocked for all contexts, including your own origin.
Custom origins: You can specify specific origins like ("https://trusted.com") to allow the feature only for those origins.

Strict: Best for high-security sites (banking, healthcare). Blocks all sensitive features. Only use if you're certain no features are needed.
Moderate: Recommended for most websites. Allows common features for your own origin while blocking them for third-party iframes.
Permissive: Suitable for sites that heavily rely on browser APIs and embed trusted third-party content.

Start with Moderate and adjust individual permissions based on your site's specific needs.

Browser DevTools: Open Network tab, look for the response headers of your main document. You should see Permissions-Policy listed.
JavaScript check: In the console, run: document.featurePolicy.allowedFeatures() (for older Feature-Policy) or check specific features with navigator.permissions.query().
Online scanners: Use security headers scanners like securityheaders.com to verify your configuration.
Console errors: When a feature is blocked, the browser console will show a warning like: "...feature is disabled by permissions policy."

New

Scroll Progress Bar Generator - Online CSS‑Only

Create a pure CSS scroll progress indicator using animation‑timeline: scroll(). No JavaScript. Copy the complete code.

Developer Tools CSS generator progress bar scroll

New

CSP Analyzer - Online Test & Improve Policy

Paste a Content‑Security‑Policy header and get a human‑readable breakdown. See potential risks and suggestions.

Analyzer analyzer CSP header security

New

Background Blend Mode Generator - Online Image + Gradient

Layer gradients and images and blend them with background‑blend‑mode. Create hero sections. Copy CSS.

Developer Tools background-blend-mode CSS generator hero

New

Browser Window Info - Online Viewport & Screen Data

See exact dimensions of your current browser inner/outer window, screen resolution, and pixel ratio. Developer debug.

Developer Tools browser info viewport window

New

Exposure Triangle Simulator – Online ISO, Aperture, Shutter

Adjust ISO, f‑stop, shutter speed and see a simulated image brightness and depth of field effect. Learn manual mode.

Photography exposure triangle photography simulator

New

Remix Route Generator - Online Loader & Action Template

Create a Remix route file with loader, action, and default export. TypeScript ready. Copy the route.tsx.

Developer Tools generator loader Remix route

New

CSS Progress Bar Generator - Online Animated & Styled

Create a custom HTML/CSS progress bar with percentage, colors, and animation. Copy the code. Modern UI element.

Developer Tools animated CSS generator progress bar

New

Photo Print Resolution Checker – Online DPI Maximum Size

Enter megapixels and desired DPI to see the maximum print size without upscaling. Quick quality check.

Checker DPI photo print resolution

New

SQL Query Example Generator - Online SELECT, JOIN, GROUP BY

Select a SQL clause (JOIN, GROUP BY, HAVING) and get a ready‑to‑run example query with explanation. Great for learning and teaching SQL.

Developer Tools example generator SQL training

New

Handwriting Worksheet Generator - Online Traceable Letters

Create custom traceable handwriting worksheets with name or sentence. Print in dotted font. Great for teachers and parents.

Educational handwriting printable trace worksheet

New

CIELAB Gradient Generator - Online Perceptually Uniform CSS

Create color gradients that are perceptually uniform by interpolating in CIELAB space. Get the CSS linear‑gradient code. Visually superior.

Color Tool CIELAB generator gradient perceptual

New

Content Inventory Generator - Online Count Words & Headings

Paste HTML or Markdown to count total words, unique words, heading distribution, and reading time. Content audit helper.

SEO audit content inventory headings words

New

Simple Will Generator - Online Fill & Print Basic Will

A template to create a basic last will and testament. Fill in names and assets. Print and sign. Not legal advice.

Business generator template testament will

New

Leftover Paint Coverage Calculator – Online Touch‑Up Planning

Enter the amount of leftover paint and see how many square feet it still covers. Plan touch-ups.

Calculator coverage leftover paint

New

Random Avatar Generator - Online Profile Picture Creator

Generate a unique geometric or pixel-art avatar from a random seed. Download as PNG. Perfect for default user icons. No upload.

Generator avatar generator profile picture random

New

Typography Scale Generator - Online Perfect Header Sizes

Select a ratio (1.25, 1.333, 1.5) and a base size to generate a full typographic scale for h1‑h6. Copy CSS variables.

Developer Tools CSS font sizes scale typography

New

Responsive Navbar Generator - Online Pure CSS Hamburger

Design a responsive navigation bar with a pure CSS hamburger menu. Customize colors and breakpoints. Copy the code.

Developer Tools CSS hamburger navbar responsive

New

Wi‑Fi QR Code Generator - Online Join Network Scan

Create a QR code that lets people connect to your Wi‑Fi without typing a password. Just scan and join. Secure local.

Generator connect generator QR Wi‑Fi

New

HTML Includes Previewer - Online Simulate SSI Includes

Paste multiple HTML snippets (header, footer) and a main content, then combine them into a single preview. Static site helper.

Developer Tools HTML includes preview static

New

Fuel Efficiency Converter - Online MPG L/100km & km/L

Convert fuel economy units between miles per gallon (US/UK), liters per 100 km, and kilometers per liter. Useful for international car comparisons.

Unit Converter converter fuel efficiency L/100km MPG

New

Photo Mosaic Creator - Online Tile Generator from Your Images

Create a mosaic where many small tiles are replaced with solid colors from a palette. Pixel art style. Adjust grid size. Local canvas.

Creative Tools generator mosaic photo tile

New

Email Obfuscator - Online Protect Address from Bots

Hide your email address from scrapers by encoding it using HTML entities and CSS tricks. Still clickable for real users. Local generator.

Generator anti‑spam email encode obfuscator

New

Wi‑Fi QR Code Generator (Advanced) - Online WPA3 & Hidden

Generate a Wi‑Fi QR code with full options: WPA3, hidden network, and EAP. Download as SVG. All local.

Generator generator QR Wi‑Fi WPA3

New

Color to OKLCH Converter - Online Perceptually Uniform

Convert hex, RGB, or HSL into the modern OKLCH color space. See the preview and copy CSS oklch() value. Local.

Color Tool color converter CSS OKLCH

New

writing‑mode Demonstrator - Online Vertical Text

Display text in horizontal‑tb, vertical‑rl, vertical‑lr. See how block and inline directions switch. For multilingual sites.

Developer Tools CSS text vertical writing‑mode

New

Gradient Text CSS Generator - Online Colorful Text Style

Create text with a gradient fill using CSS background-clip. Configure colors and direction. Copy the code. Works in modern browsers.

Developer Tools colorful CSS generator gradient text

New

Responsive Text CSS Generator - Online Fluid Typography

Create CSS clamp() values for fluid typography. Enter min and max font sizes and viewport widths. Modern responsive design.

Developer Tools CSS generator responsive text

New

Custom Dummy Text Generator - Online Pirate Ipsum & More

Need dummy text? Pick a theme (pirate, cupcake, zombie) and get paragraphs of themed placeholder text. Not just Lorem Ipsum.

Generator dummy text generator ipsum theme

New

Random CSS Gradient Generator - Online Backgrounds

Generate a unique, beautiful random gradient background with each click. Copy the CSS code. Endless inspiration.

Developer Tools background CSS gradient random

New

F‑Stop Calculator - Online Aperture & Depth of Field Reference

Learn about f‑stops and their effect on light and depth. Calculate equivalent exposure adjustments. Educational.

Photography aperture calculator f-stop photography