SN System Properties Reference
Property reference

com.glide.cs.embed.csp_frame_ancestors

The com.glide.cs.embed.csp_frame_ancestors property sets the value for the Content-Security-Policy header related to frame ancestors for chat embeds. Admins should review this property to ensure proper security configurations for Virtual Agent and Live Agent chat functionalities.

Default: 'self' Type: string Application: Global

Key questions about this property

The answers below summarize the purpose, scope, default effect, and review scenarios for this property.

What does it do? This property defines the allowed sources for embedding chat interfaces by configuring the frame-ancestors directive in the Content-Security-Policy header.
What area does it affect? Chat Embed Security
What does the default mean? The default value is "'self'", which is the baseline setting used unless it is changed.
When should you review it? Review this property when configuring chat embed security settings or during security audits.

Out of the box property record

Raw metadata from the property record.

Property name com.glide.cs.embed.csp_frame_ancestors
Sys ID 1855699273522300e985658b4cf6a76c
Type string
Application Global
Default value 'self'
Description The string value to set for "Content-Security-Policy: frame-ancesors <string>" header for Virtual Agent and Live Agent chat embeds. Will replace <string>
Updated 2024-05-25 05:09:43

Sources

Official references and nearby text excerpts where this property appears.

Documentation excerpt View supporting context
Context preview Snippet 1
... property. Specify the full redirect URLs or the host part of the URL, such as https://example.com. This procedure requires that you set values for the following two system properties: • com.glide.cs.embed.csp_frame_ancestors • com.glide.cs.embed.xframe_options (IE 11 only) These properties determine the security policy for the embedded chat widget, namely how browsers render and secure HTML content for Virtual Agent and Live Agent ...
Documentation excerpt View supporting context
Context preview Snippet 2
... can directly start a chat that opens with the context of that specific case. Note: Chat is available when you activate the Glide Virtual Agent plugin (com.glide.cs.chatbot) and set the com.glide.cs.embed.csp_frame_ancestors system property value to 'self' <your website URL>. Now Assist in Virtual Agent with Engagement Messenger Now Assist in Virtual Agent offers a conversational support experience that improves the chat ...
Additional source link Another external reference for this property
Open reference