UserWay

If your UserWay widget is not loading on your website due to Content Security Policy (CSP) restrictions, follow these steps to fix the issue:

- Look for the error message indicating <code>frame-src 'self'</code> in your CSP directive.

- Modify your CSP policy to include <code>*.userway.org</code> in the <code>frame-src</code> directive.
 default-src 'self' *.userway.org;
- Apply the updated CSP settings on your website to allow the widget scripts to load securely.

1. Identify the Error:
 - Look for the error message indicating <code>frame-src 'self'</code> in your CSP directive.
2. Update CSP Settings:
 - Modify your CSP policy to include <code>*.userway.org</code> in the <code>frame-src</code> directive.
 default-src 'self' *.userway.org;
 - Apply the updated CSP settings on your website to allow the widget scripts to load securely.

Note: If your system does not provide an option to add a wildcard domain, please ensure to add the following domains: cdn.userway.org, userway.org, and api.userway.org.

By adjusting your CSP to permit frames from UserWay's domains, you ensure that the widget functions correctly without compromising security measures. For further assistance, reach out to your web development team or UserWay support.

If you have any questions, you can reach our support team at <a href="mailto:desk@support.userway.org" rel="nofollow noopener noreferrer" target="_blank">desk@support.userway.org</a>.

Troubleshooting: Content Security Policy directive: frame-src 'self' error

Content Security Policy directive: frame-src 'self' error

Find answers and get help from Intercom Support and Community Experts

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Title

Track the progress of all tickets related to your company.

Tickets portal.

{assigneeName} needs more information from you