stable (1.2) latest (tip-of-tree) v8-inspector (node) Home Domains Accessibility Animation ApplicationCache CSS CacheStorage Console DOM DOMDebugger DOMStorage Database Debugger DeviceOrientation Emulation HeapProfiler IO IndexedDB Input Inspector LayerTree Log Memory Network Page Profiler Rendering Runtime Schema Security ServiceWorker Storage SystemInfo Target Tethering Tracing
Chrome Debugging Protocol Viewer - latest (tip-of-tree)

Security Domain

Security

Experimental

Methods

Security. enable

Enables tracking security state changes.

Security. disable

Disables tracking security state changes.

Security. showCertificateViewer

Displays native dialog with the certificate details.

Security. handleCertificateError

Handles a certificate error that fired a certificateError event.

Parameters
eventId
integer The ID of the event.
action
CertificateErrorAction The action to take on the certificate error.

Security. setOverrideCertificateErrors

Enable/disable overriding certificate errors. If enabled, all certificate error events need to be handled by the DevTools client and should be answered with handleCertificateError commands.

Parameters
override
boolean If true, certificate errors will be overridden.

Events

Security. securityStateChanged

The security state of the page changed.

Parameters
securityState
SecurityState Security state.
schemeIsCryptographic
boolean True if the page was loaded over cryptographic transport such as HTTPS.
explanations
array [ SecurityStateExplanation ] List of explanations for the security state. If the overall security state is `insecure` or `warning`, at least one corresponding explanation should be included.
insecureContentStatus
InsecureContentStatus Information about insecure content on the page.
summary
string Overrides user-visible description of the state.

Security. certificateError

There is a certificate error. If overriding certificate errors is enabled, then it should be handled with the handleCertificateError command. Note: this event does not fire if the certificate error has been allowed internally.

Parameters
eventId
integer The ID of the event.
errorType
string The type of the error.
requestURL
string The url that was requested.

Types

CertificateId

An internal certificate ID value.

Type: integer

SecurityState

The security level of a page or resource.

Type: string

Allowed values

unknown, neutral, insecure, warning, secure, info.

SecurityStateExplanation

An explanation of an factor contributing to the security state.

Type: object

Properties
securityState
SecurityState Security state representing the severity of the factor being explained.
summary
string Short phrase describing the type of factor.
description
string Full text explanation of the factor.
hasCertificate
boolean True if the page has a certificate.

InsecureContentStatus

Information about insecure content on the page.

Type: object

Properties
ranMixedContent
boolean True if the page was loaded over HTTPS and ran mixed (HTTP) content such as scripts.
displayedMixedContent
boolean True if the page was loaded over HTTPS and displayed mixed (HTTP) content such as images.
ranContentWithCertErrors
boolean True if the page was loaded over HTTPS without certificate errors, and ran content such as scripts that were loaded with certificate errors.
displayedContentWithCertErrors
boolean True if the page was loaded over HTTPS without certificate errors, and displayed content such as images that were loaded with certificate errors.
ranInsecureContentStyle
SecurityState Security state representing a page that ran insecure content.
displayedInsecureContentStyle
SecurityState Security state representing a page that displayed insecure content.

CertificateErrorAction

The action to take when a certificate error occurs. continue will continue processing the request and cancel will cancel the request.

Type: string

Allowed values

continue, cancel.