Enable Content Security Policy (CSP)
What's Content Security Policy (CPS)
Content Security Policy
(CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement to distribution of malware.
Changes needed to the Task Analytics script
When you use Content Security Policy to mitigate XSS attacks you need to make a few changes to get our survey to run.
- Since inline scripts are disabled with most CSP setups you will have to copy our script code into a script file named taskanalytics.js, save it on your server and include it using a <script>-tag in your rendered HTML
- Our script relies on embedding scripts from the domain in.taskanalytics.com so you will have to adjust your CSP to reflect this.
An example of a valid CSP is: default-src 'none';script-src 'self' in.taskanalytics.com
The following guidelines are recommended to make sure the privacy and security are upheld: Have an active user management policy As an admin, Task Analytics allows you to grant access to and manage users in Task Analytics. Maintain an active user ...
Verify the installation of Task Analytics
Check whether Task Analytics is installed on your website. There are different methods you can use to verify a correct installation: Option 1: Search for “taskanalytics” in the source code This option only works if you’ve installed Task ...
Getting Started with Task Analytics
Geting Started with Task Analytics Below are instructions to install and run Task Analytics, including the following main topics: Account and User access A brief introduction to the Task Analytics Survey Technical installation Preview & optimize your ...
Find your Task Analytics Tracking Code
Installation guide for Task Analytics