Content-Security-Policy (CSP)
Last updated
Last updated
Content-Security-Policy (CSP) is a browser feature that limits what origins (i.e. domains) your page can interact with. When you configure a security policy on your website, the browser will reject any connections that don't fit the policy. If you're using the <script>
tag to inject Rep.ai into your site, it's likely you may not have added the Rep.ai domains to your policy.
To use Rep.ai with a CSP, add the following directives only if you've already specified them for your other resources:
Directive
Value
connect-src
https://*.servicebell.com
wss://*.servicebell.com
https://*.rep.ai
wss://*.rep.ai
*.twilio.com
script-src
https://*.servicebell.com
https://*.rep.ai
https://*.calendly.com
worker-src
https://*.servicebell.com
https://*.rep.ai
style-src
https://*.servicebell.com
https://*.rep.ai
img-src
https://*.servicebell.com
https://*.rep.ai
media-src
https://*.servicebell.com
https://*.rep.ai
mediastream:
font-src
https://*.servicebell.com
https://*.rep.ai
webrtc
'allow'