3min

Content-Security-Policy

You should keep reading this if your application runs in an environment that enforces content security policies.

Content-Security-Policy allows you to tell the browser what and how your page can interact with third-party scripts.

Here are the policies you'll need to set to use Highlight:

  1. script-src: https://static.highlight.run/
    1. This policy is to allow downloading the Highlight runtime code for session recording and error monitoring.
  2. connect-src: https://pub.highlight.run
    1. This policy is to allow connecting with Highlight servers to receive recorded session data.



Updated 01 Mar 2022
Did this page help you?
Yes
No
UP NEXT
Privacy
Docs powered by archbeeÂ