Content-Security-Policy (CSP)

Content-Security-Policy (CSP) is a browser feature that limits what origins (i.e. domains) your page can interact with. When you configure a security policy on your website, the browser will reject any connections that don't fit the policy. If you're using the <script> tag to inject Rep.ai into your site, it's likely you may not have added the Rep.ai domains to your policy.

To use Rep.ai with a CSP, add the following directives only if you've already specified them for your other resources:

Directive

Value

connect-src

https://*.servicebell.com

wss://*.servicebell.com

https://*.rep.ai

wss://*.rep.ai

*.twilio.com

script-src

https://*.servicebell.com https://*.rep.ai

https://*.calendly.com

worker-src

https://*.servicebell.com https://*.rep.ai

style-src

https://*.servicebell.com https://*.rep.ai

img-src

https://*.servicebell.com https://*.rep.ai

media-src

https://*.servicebell.com https://*.rep.ai

mediastream:

font-src

https://*.servicebell.com https://*.rep.ai

webrtc

'allow'

Last updated