Permissions Policy

The monetization directive within the HTTP Permissions-Policy header controls whether the current document and any nesting browsing contexts (iframes) are allowed to use the Web Monetization API.

Syntax

The basic syntax is as follows, where allowlist is a list of origins permitted to use Web Monetization.

Permissions-Policy: monetization=(allowlist)

Example

Allow Web Monetization in the document and in all nested browsing contexts (iframes) in the same origin.

Permissions-Policy: monetization=(self)

This is the default policy for monetization.

Note

The allowlist attributes only take effect when the content navigable of the iframe is navigated. Adding or removing the monetization attribute has no effect on an already-loaded document.

Specifications

Specification
Web Monetization #permissions-policy