Content Security Policy Setup

This guide describes how to set up a ‘Content Security Policy’ setting to avoid reauthorization of the connector.

1. Go to ‘System designer’ by clicking on the ‘Gear’ icon (1) and selecting ‘Content Security Policy' (2) (Fig. 1)
   Fig. 1 Selecting the 'Content Security Policy’ section

   Open

   

    

2. Click on the ‘Add source’ button (Fig. 2)
   Fig. 2 ‘Add source’ button

   Open

   

    

   1. Fill in ‘Source URL’ (1) field with the required URL https://[my-instance-domain.my].connect.aws/ (this URL with ccp-v2/ extension is used as ‘InstansceURL’ in the Telephony settings). To add the Directives, press the ‘+ New’ button and select ‘frame-src’ option (2). Press the ‘Save all’ (3) and ‘Save’ button (4) (Fig. 3)
      Fig. 3 Setting of the ‘Content Security Policy’ section

      
      
      

   2. To work with Chat sessions

      1. Source URL https://participant.connect.[region].amazonaws.com/. [region] could be found after the authorization https://signin.aws.amazon.com/  (Fig. 4)
         Fig. 4 [region] location

          

      2. Directives connect-src, script-src

   3. For work with transferred files

      1. Source URL has the follwowing structure https://[nameOfBucket].s3.[region].amazonaws.com/

         1. [nameOfBucket] can be found ‘Amazon Connect’ → ‘Data storage’ → ‘Attachments’ (Fig. 5)
            Fig. 5 [nameOfBucket] location

             

         2. [region] can be found in the S3 Cervice (Fig. 6)
            Fig. 6 [region] location

             

            1. Please note: If the storage is not on the S3, then as a Source URL a direct link to this different storage should be used

         3. Directives connect-src