If your website uses a Content Security Policy (CSP), allow actorssl-5637.kxcdn.com and *.myfeelback.com and *.skeepers.io in the policy.
- actorssl-5637.kxcdn.com is the domain name of our CDN hosting the JavaScript and CSS resources required for trigger scenarios to function and for displaying a survey.
- *.myfeelback.com contains the resources required to display the survey.
- *.skeepers.io is the group’s domain name.
Is it possible to define more specific rules to apply for CSP: connect / script / img / frame / style?
It all depends on your deployment configuration and the way the survey is deployed.
In a standard configuration, the essential elements are:
- connect;
- script;
- img;
- style;
Depending on the style and the way the survey is built, it may be possible to use the parent page’s style and no images.
In this case, it may be possible to remove the img and style permissions. However, we do not recommend this as it may create issues for future deployments.
Please note that non-standard implementations (e.g., outside a TMS) may cause side effects and additional permissions that we cannot anticipate. If a CSP issue is identified in the developer console, the Skeepers teams will not be able to address it. It will need to be handled by your internal technical teams.