---
# System prepended metadata

title: Adding Content Security Policy on Cloudfront

---

# Adding Content Security Policy on Cloudfront

1. Log onto aws
2. Navigate to cloudfront
3. Select the distribution
4. Select the "Behaviors" tab
5. Select the "web/*" behavior, click edit
6. On the next page scroll down to the "Response headers policy" ![](https://i.imgur.com/pMupJYK.png)
7. Click on "View policy" ![](https://i.imgur.com/EAKYSPk.png), this will open a new tab.
8. On the policy tab click edit ![](https://i.imgur.com/nJd3pY4.png)
9. On the edit screen scroll to "Content-Security-Policy" and copy the text in the input a text editor of choice. ![](https://i.imgur.com/aZiVxbJ.png)
10. update the security policy and paste back in the content security policy input on cloudfront ![](https://i.imgur.com/AjnjngE.png)
11. scroll to the bottom and save changes. ![](https://i.imgur.com/VphjzBx.png)