Enable Content Security Policy for Task Analytics

Enable Content Security Policy (CSP)

What's Content Security Policy (CPS)

Content Security Policy (CSP) is an added layer of security that helps to detect and mitigate certain types of attacks, including Cross Site Scripting (XSS) and data injection attacks. These attacks are used for everything from data theft to site defacement to distribution of malware.

Changes needed to the Task Analytics script

When you use Content Security Policy to mitigate XSS attacks you need to make a few changes to get our survey to run.
  • Since inline scripts are disabled with most CSP setups you will have to copy our script code into a script file named taskanalytics.js, save it on your server and include it using a <script>-tag in your rendered HTML
  • Our script relies on embedding scripts from the domain in.taskanalytics.com so you will have to adjust your CSP to reflect this.
    An example of a valid CSP is: default-src 'none';script-src 'self' in.taskanalytics.com

    • Related Articles

    • Security Guidelines

      The following guidelines are recommended to make sure the privacy and security are upheld: Have an active user management policy As an admin, Task Analytics allows you to grant access to and manage users in Task Analytics. Maintain an active user ...
    • Verify the installation of Task Analytics

      Check whether Task Analytics is installed on your website. There are different methods you can use to verify a correct installation: Option 1: Search for “taskanalytics” in the source code This option only works if you’ve installed Task ...
    • Getting Started with Task Analytics

      Geting Started with Task Analytics Below are instructions to install and run Task Analytics, including the following main topics: Account and User access A brief introduction to the Task Analytics Survey Technical installation Preview & optimize your ...
    • Find your Task Analytics Tracking Code

      The Task Analytics javascript tracking code needs to be installed on your website, app or intranet in order to invite visitors to participate and answer questions. This is a unique javascript code that refers to your account and survey(s).  ​ Step ...
    • Installation guide for Task Analytics

      You can install Task Analytics on your website, app or intranet by adding the Task Analytics javascript code on the pages you want Task Analytics to run on. Step 1: Get the Task Analytics javascript Retrieve the Task Analytics javascript. This ...