If you use a restrictive Content Security Policy on your site, you may need to add additional rules to allow JavaScript associated with TrustedSite Certification to function.

The site's set of CSP rules required should include the following, in addition to the existing rules needed for your site content:

Content-Security-Policy: script-src-elem https://cdn.ywxi.net; style-src-elem 'unsafe-inline' https://cdn.ywxi.net; img-src https://cdn.ywxi.net; connect-src https://s3-us-west-2.amazonaws.com; frame-src https://www.trustedsite.com;

Halo Security users can monitor website headers, including the Content Security Policy. Learn more here.

Did this answer your question?