Skip to content
Web Monetization logo Web Monetization

Permissions Policy

The monetization directive within the HTTP Permissions-Policy header controls whether the current document and any nesting browsing contexts (iframes) are allowed to use the Web Monetization API.


The basic syntax is as follows, where allowlist is a list of origins permitted to use Web Monetization.

Permissions-Policy: monetization=(allowlist)


Allow Web Monetization in the document and in all nested browsing contexts (iframes) in the same origin.

Permissions-Policy: monetization=(self)

This is the default policy for monetization.