内容表

• Type
• 浏览器兼容性

webRequest.SecurityInfo

An object describing the security properties of a particular web request. An object of this type is returned from the webRequest.getSecurityInfo() API。

If the request is not secured using TLS , then this object will contain only the property state , whose value will be "insecure" .

类型

Values of this type are objects. They contain the following properties:

certificates

数组 of CertificateInfo 。若 webRequest.getSecurityInfo() was called with the certificateChain option present and set to true , this will contain a CertificateInfo object for every certificate in the chain, from the server certificate up to and including the trust root.

Otherwise it will contain a single CertificateInfo object, for the server certificate.

certificateTransparencyStatus 可选

字符串 . Indicates the Certificate Transparency status for the connection. This may take any one of the following values:

• "not_applicable"
• "policy_compliant"
• "policy_not_enough_scts"
• "policy_not_diverse_scts"

cipherSuite 可选

字符串 . Cipher suite used for the connection, formatted as per the TLS specification : for example, "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256".

errorMessage 可选

字符串 . If there was a problem with the TLS handshake (for example, the certificate had expired, or a trusted root could not be found, or a certificate was revoked) then status will be "broken" and the errorMessage property will contain a string describing the error, taken from Firefox's internal list of error codes.

Note though that at present you can only call getSecurityInfo() 在 onHeaderReceived listener, and the  onHeaderReceived event is not fired when the handshake fails. So in practice this will never be set.

hpkp 可选

布尔 . true if the host uses Public Key Pinning , false 否则。

hsts 可选

布尔 . true if the host uses Strict Transport Security , false 否则。

isDomainMismatch 可选

布尔 . true if the server's domain name does not match the domain name in its certificate, false 否则。

isExtendedValidation 可选

布尔 . true if the server has an Extended Validation Certificate , false 否则。

isNotValidAtThisTime 可选

布尔 . true if the current time falls outside the server certificate's validity period (i.e. the certificate has expired or is not yet valid), false 否则。

isUntrusted 可选

布尔 . true if a chain back to a trusted root certificate could not be constructed, false 否则。

keaGroupName 可选

字符串 。若 state is "secure" this describes the key exchange algorithm used in this request.

protocolVersion 可选

字符串 . Version of the TLS protocol used. One of:

• "TLSv1"
• "TLSv1.1"
• "TLSv1.2"
• "TLSv1.3"
• "unknown" (if the version is not valid)

signatureSchemeName 可选

字符串 。若 state is "secure" this describes the signature scheme used in this request.

state

字符串 . State of the connection. One of:

• "broken": the TLS handshake failed (for example, the certificate had expired)
• "insecure": the connection is not a TLS connection
• "secure": the connection is a secure TLS connection
• "weak": the connection is a TLS connection but is considered weak. You can examine weaknessReasons to find out the problem.

Note though that at present you can only call getSecurityInfo() 在 onHeaderReceived listener, and the  onHeaderReceived event is not fired when the handshake fails. So in practice this will never be set to "broke".

weaknessReasons 可选

字符串 。若 state is "weak", this indicates the reason. Currently this may contain only a single value "cipher", indicating that the negotiated cipher suite is considered weak.

浏览器兼容性

BCD tables only load in the browser

Found a problem with this page?

• Edit on GitHub
• Source on GitHub
• Report a problem with this content on GitHub
• Want to fix the problem yourself? See our Contribution guide .

最后修改： Oct 26, 2021 , 由 MDN 贡献者

相关话题

1. 浏览器扩展名
2. 快速入门

   1. What are extensions?
   2. Your first extension
   3. Your second extension
   4. Anatomy of an extension
   5. Example extensions
   6. What next?
3. 概念

   1. Using the JavaScript APIs
   2. Content scripts
   3. Match patterns
   4. Working with files
   5. 国际化
   6. Content Security Policy
   7. Native messaging
   8. Differences between API implementations
   9. Chrome incompatibilities
4. 用户界面

   1. 用户界面
   2. Toolbar button
   3. Address bar button
   4. Sidebars
   5. Context menu items
   6. Options page
   7. Extension pages
   8. Notifications
   9. Address bar suggestions
   10. Developer tools panels
5. 如何

   1. Intercept HTTP requests
   2. Modify a web page
   3. Insert external content
   4. Share objects with page scripts
   5. Add a button to the toolbar
   6. Implement a settings page
   7. Work with the Tabs API
   8. Work with the Bookmarks API
   9. Work with the Cookies API
   10. Work with contextual identities
   11. Interact with the clipboard
   12. Build a cross-browser extension
6. Firefox differentiators
7. JavaScript API

   1. Browser support for JavaScript APIs
   2. alarms
   3. bookmarks
   4. browserAction
   5. browserSettings
   6. browsingData
   7. captivePortal
   8. clipboard
   9. 命令
   10. contentScripts
   11. contextualIdentities
   12. Cookie
   13. devtools
   14. dns
   15. downloads
   16. events
   17. extension
   18. extensionTypes
   19. find
   20. history
   21. i18n
   22. identity
   23. idle
   24. management
   25. menus
   26. notifications
   27. omnibox
   28. pageAction
   29. permissions
   30. pkcs11
   31. privacy
   32. proxy
   33. runtime
   34. search
   35. sessions
   36. sidebarAction
   37. storage
   38. tabs
   39. theme
   40. topSites
   41. 类型
   42. userScripts
   43. webNavigation
   44. webRequest
       1. 方法
          1. filterResponseData()
          2. getSecurityInfo()
          3. handlerBehaviorChanged()
       2. 特性
          1. MAX_HANDLER_BEHAVIOR_CHANGED_CALLS_PER_10_MINUTES
       3. 类型
          1. BlockingResponse
          2. CertificateInfo
          3. HttpHeaders
          4. RequestFilter
          5. ResourceType
          6. SecurityInfo
          7. StreamFilter
          8. UploadData
       4. 事件
          1. onAuthRequired
          2. onBeforeRedirect
          3. onBeforeRequest
          4. onBeforeSendHeaders
          5. onCompleted
          6. onErrorOccurred
          7. onHeadersReceived
          8. onResponseStarted
          9. onSendHeaders
   45. windows
8. Manifest keys

   1. 介绍

   1. 作者
   2. background
   3. browser_action
   4. browser_specific_settings
   5. chrome_settings_overrides
   6. chrome_url_overrides
   7. 命令
   8. content_scripts
   9. content_security_policy
   10. default_locale
   11. description
   12. developer
   13. devtools_page
   14. dictionaries
   15. externally_connectable
   16. homepage_url
   17. icons
   18. incognito
   19. manifest_version
   20. name
   21. offline_enabled
   22. omnibox
   23. optional_permissions
   24. options_page
   25. options_ui
   26. page_action
   27. permissions
   28. protocol_handlers
   29. short_name
   30. sidebar_action
   31. storage
   32. theme
   33. theme_experiment
   34. user_scripts
   35. version
   36. version_name
   37. web_accessible_resources
9. Extension Workshop

   1. Develop
   2. Publish
   3. Manage
   4. Enterprise
10. Contact us
11. Channels

    1. Add-ons blog
    2. Add-ons forum
    3. Add-ons chat