All Collections
Get Started with TrustedSite Certification
Allow TrustedSite Certification with a Content Security Policy
Allow TrustedSite Certification with a Content Security Policy
Nick Hemenway avatar
Written by Nick Hemenway
Updated over a week ago

If you use a restrictive Content Security Policy on your site, you may need to add additional rules to allow JavaScript associated with TrustedSite Certification to function.

The site's set of CSP rules required should include the following, in addition to the existing rules needed for your site content:
โ€‹

Content-Security-Policy: script-src-elem https://cdn.ywxi.net; style-src-elem 'unsafe-inline' https://cdn.ywxi.net; img-src https://cdn.ywxi.net; connect-src https://s3-us-west-2.amazonaws.com; frame-src https://www.trustedsite.com;

Halo Security users can monitor website headers, including the Content Security Policy. Learn more here.

Did this answer your question?