apply_filters( 'wp_inline_script_attributes', array $attributes, string $javascript )

Filters attributes to be added to a script tag.

Contents

Parameters
Source
Related
- Used By
Changelog
User Contributed Notes
- Feedback

Parameters

$attributes array: Key-value pairs representing <script> tag attributes.
Only the attribute name is added to the <script> tag for entries with a boolean value, and that are true.
$javascript string: Inline JavaScript code.

Source

File: wp-includes/script-loader.php. View all references

$attributes = apply_filters( 'wp_inline_script_attributes', $attributes, $javascript );

View on Trac View on GitHub

Used By

Used By
Used By	Description
wp_get_inline_script_tag() wp-includes/script-loader.php	Wraps inline JavaScript in tag.

Changelog

Changelog
Version	Description
5.7.0	Introduced.

User Contributed Notes

Skip to note 1 content

You must log in to vote on the helpfulness of this noteVote results for this note: 0You must log in to vote on the helpfulness of this note

Contributed by Beda — 1 month ago
This has to be used to make WP a CSP compliant system (at least, in the front end. Remains to be tested in the admin area)
```
function wpdocs_add_nonce_to_scripts( $attr ) {
	if ( 'text/javascript' !== $attr['type'] ) {
		return $attr;
	}

	return array(
		'type' => 'text/javascript',
		'nonce' => '123',// Your Nonce. Obviously more featured than this example.
	);
}
add_filter( 'wp_inline_script_attributes', 'wpdocs_add_nonce_to_scripts' );
```
Then, you can use 'nonce-123' in your CSP Policy, example:
"script-src 'self' 'noncoe-123';"
Top ↑
Feedback
- Note that this will override other attributes on the script tag. Would be better to set $attr[‘nonce’] on the existing array rather than return a new array. — By crstauf — 1 month ago
Log in to add feedback

You must log in before being able to contribute a note or feedback.