W3cubDocs

/Web APIs

TrustedTypePolicyFactory: isScriptURL() method

The isScriptURL() method of the TrustedTypePolicyFactory interface returns true if it is passed a valid TrustedScriptURL object.

Note: The purpose of the functions isScriptURL(), isHTML(), and isScript() is to check if the object is a valid TrustedType object, created by a configured policy.

Syntax

js

isScriptURL(value)

Parameters

Return value

A booleanthat is true if the object is a valid TrustedScriptURL object.

Examples

In the below example the constant url was created by a policy, and therefore isScriptURL() returns true. The second example is an attempt to fake an object, and the third is a string. Both of these will return false when passed to isScriptURL().

js

const url = policy.createScriptURL("https://example.com/myscript.js");
console.log(trustedTypes.isScriptURL(url)); // true;

const fake = Object.create(TrustedScriptURL.prototype);
console.log(trustedTypes.isScriptURL(fake)); // false

console.log(trustedTypes.isScriptURL("https://example.com/myscript.js")); // false

Specifications

Browser compatibility

Desktop Mobile
Chrome Edge Firefox Internet Explorer Opera Safari WebView Android Chrome Android Firefox for Android Opera Android Safari on IOS Samsung Internet
isScriptURL 83 83 No No 69 No 83 83 No 59 No 13.0

© 2005–2023 MDN contributors.
Licensed under the Creative Commons Attribution-ShareAlike License v2.5 or later.
https://developer.mozilla.org/en-US/docs/Web/API/TrustedTypePolicyFactory/isScriptURL