Using Content-Security-Policy headers to increase the security of your Application prevents external scripts from running on top of your Application. However, to make sure Userlane can be executed on top of your Application, you need to add a few policies to your CSP headers.

Allowing the script execution for userlane.com

Add the following hostnames to your CSP default-src, script-src , style-src , img-src , connect-src , and font-src attribute:

https://*.userlane.com

This whitelists all userlane.com images, scripts, fonts and styles to be loaded into your Application. This is necessary to make sure Userlane can function correctly.

Did this answer your question?