# How to Update Your CSP Whitelist for Appier Tracking ## What does CSP stand for? CSP (Content Security Policy) is a website security mechanism to prevent website from cyber attack, such as cross-site scripting (XSS). It works by letting the website owner create a whitelist of trusted domains. The web browser will only load and run scripts, images, and other content that comes from a source on this whitelist. If a resource, like Appier's tracking code, comes from a domain not on the whitelist, the browser will block it, and Appier won't be able to track ad performance and collect any data for further optimization. ## What to do if you have a CSP? If your website uses a CSP, you must update its whitelist to include the domains Appier uses. This ensures that your browser doesn't block the tracking code, allowing it to function properly. There are 2 solutions you can choose to add Appier's domain on your whitelist. ### **Solution1** Add the following configuration to allow all Appier related domain in whitelist ``` script-src 'self' *.appier.net ``` ### **Solution2** Add the specific domain in whitelist (Appier Endpoint list) ``` anylist.c.appier.net t0.c.appier.net jscdn.appier.net gocm.c.appier.net a.c.appier.net s.c.appier.net c.c.appier.net ``` --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.adcloud.appier.com/how-to-update-your-csp-whitelist-for-appier-tracking.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.