Adding Content Security Policy(CSP) for a custom portal page at the page level

Prem Vikas K2
Tera Contributor

3 weeks ago

ServiceNow has provided the below KB article for options on enabling the CSP for Portal page at page level.

 

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB2947482

 

By OOB. CSP can be added to a portal page via HTTP response header. As anyone added CSP at page level using the below option provided by the KB article 

 

Option 3: Scripted Conditional Header via Business Rule or Scripted REST API (Recommended for Granular Control) Implement a custom Business Rule or Scripted REST API that programmatically sets the CSP header based on the requested URL path. This allows the header to be applied only where iFrame embedding is required. Note: this is a custom implementation and falls outside the scope of out-of-box platform support.

0 Helpfuls
  • 524 Views
1 REPLY 1

Mark Manders
Giga Patron

3 weeks ago

Posting the same message multiple times is against the Community Code of Conduct. Please be aware of this to prevent your account from getting locked out of the Community.


Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark
0 Helpfuls