If the page you're using BugHerd on has a Content Security Policy (CSP), you'll need to add a few domains in order for the sidebar to appear. The CSP exceptions required will vary depending on which version of our sidebar you're using.
Please choose the sidebar experience that applies to you below...
|
|
|
New sidebar CSP rules
If you're using our new sidebar, you'll need the below policy configuration:
script-src:
'unsafe-inline'
*.bugherd.com
*.pusher.com
img-src:
d2iiunr5ws5ch1.cloudfront.net
bugherd-attachments.s3.amazonaws.com
*.bugherd.com data:
connect-src
*.pusher.com
sessions.bugsnag.com
frame-src:
*.bugherd.com
Legacy sidebar CSP rules
If you're still using the legacy sidebar, you'll need the below policy configuration instead:
connect-src:
www.bugherd.com
bugherd-attachments.s3.amazonaws.com
ws.pusherapp.com
screenshots.bugherd.com
sessions.bugsnag.com
font-src:
fonts.googleapis.com
www.bugherd.com
d2iiunr5ws5ch1.cloudfront.net
script-src:
'self'
'unsafe-inline'
d2iiunr5ws5ch1.cloudfront.net
d2wy8f7a9ursnm.cloudfront.net
www.bugherd.com
bugherd-attachments.s3.amazonaws.com
ws.pusherapp.com
screenshots.bugherd.com
style-src:
'self'
'unsafe-inline'
d2iiunr5ws5ch1.cloudfront.net
If you need any further help on this, feel free to contact us on support@bugherd.com.