Skip to main content

Content Security Policy directives to integrate Progressier

Kevin Basset avatar
Written by Kevin Basset
Updated over a week ago

If you've integrated Progressier into your app and your app has strict Content Security Policy rules, you'll need to update them to allow loading the script/manifest/service worker from the Progressier domain, and icons from our storage bucket:
​

Content-Security-Policy:
- connect-src: progressier.app progressier.com pwa.xyz;
- img-src: * pwa.xyz firebasestorage.googleapis.com progressier.com;
- manifest-src: progressier.app progressier.com;
- script-src: progressier.app progressier.com;
- worker-src: progressier.app progressier.com;

Note: we may change our image bucket storage location so to keep images from breaking in your app, we recommend allowing images from any domain with the img-src: * directive (if you have a content security policy -- else you're fine).

Did this answer your question?