Permissions-Policy: encrypted-media Experimental: This is an experimental technology Check the Browser compatibility table carefully before using this in production. The HTTP Permissions-Policy header encrypted-media directive controls whether the current document is allowed to use the Encrypted Media Extensions API (EME). Specifically, where a defined policy blocks use of this feature, the Promise returned by Navigator.requestMediaKeySystemAccess() will reject with a DOMException of type SecurityError . Syntax http Permissions-Policy : encrypted-media=<allowlist>; <allowlist> A list of origins for which permission is granted to use the feature. See Permissions-Policy > Syntax for more details. Default policy The default allowlist for encrypted-media is self . Specifications Specification Encrypted Media Extensions # permissions-policy-integration Browser compatibility BCD tables only load in the browser with JavaScript enabled. Enable JavaScript to view data. See also Permissions-Policy header Permissions Policy