How to Update Your CSP Whitelist for Appier Tracking

What does CSP stand for?

CSP (Content Security Policy) is a website security mechanism to prevent website from cyber attack, such as cross-site scripting (XSS). It works by letting the website owner create a whitelist of trusted domains. The web browser will only load and run scripts, images, and other content that comes from a source on this whitelist.

If a resource, like Appier's tracking code, comes from a domain not on the whitelist, the browser will block it, and Appier won't be able to track ad performance and collect any data for further optimization.

What to do if you have a CSP?

If your website uses a CSP, you must update its whitelist to include the domains Appier uses. This ensures that your browser doesn't block the tracking code, allowing it to function properly. There are 2 solutions you can choose to add Appier's domain on your whitelist.

Solution1

Add the following configuration to allow all Appier related domain in whitelist

script-src 'self' *.appier.net

Solution2

Add the specific domain in whitelist (Appier Endpoint list)

anylist.c.appier.net
t0.c.appier.net
jscdn.appier.net
gocm.c.appier.net
a.c.appier.net
s.c.appier.net
c.c.appier.net

PreviousWeb GTM Spec (English version)

Last updated 23 days ago