Adding cside to your Content Security Policy (CSP)

If your site uses a Content Security Policy with script-src or connect-src directives, you need to add proxy.csidetm.com to those directives.

You only need to update directives you already use. If you don't have script-src or connect-src in your CSP, no changes are needed for those directives.

Example:

Content-Security-Policy: script-src 'self' proxy.csidetm.com; connect-src 'self' proxy.csidetm.com

Add these to your existing CSP settings without removing your current policies. As part of your cside plan, you can also direct CSP violations to our dashboard for monitoring.

Learn more about setting up CSP here.

Previous

What URLs do we proxy?

Next

Caveats

On this page

No Headings