Permissions-Policy: local-fonts

Experimental: This is an experimental technology
Check the Browser compatibility table carefully before using this in production.

The HTTP Permissions-Policy header local-fonts directive controls whether the current document is allowed to gather data on the user's locally-installed fonts via the Window.queryLocalFonts() method.

Specifically, where a defined policy blocks use of this feature, Promises returned by Window.queryLocalFonts() will reject with a DOMException of type SecurityError.

Syntax

http

Permissions-Policy: local-fonts=<allowlist>;

<allowlist>: A list of origins for which permission is granted to use the feature. See Permissions-Policy > Syntax for more details.

Default policy

The default allowlist for local-fonts is self.

Specifications

Specification
Local Font Access # permissions-policy

Browser compatibility

BCD tables only load in the browser

Syntax

Default policy

Specifications

Browser compatibility

See also