🚨
This guide is only relevant for the Web integration.
If your checkout page is using the Content-Security-Policy header, you'll need to add a few things to your whitelist.
| Policy | Origin | Notes |
|---|---|---|
script-src | sdk.primer.io | required |
frame-src | sdk.primer.io | required |
style-src | 'unsafe-inline' | required |
connect-src | api.sandbox.primer.io | required |
frame-src | *.cardinalcommerce.com | 3DS |
frame-src | c.paypal.com | For PayPal Payments |
child-src | c.paypal.com | For PayPal Payments |
script-src | c.paypal.com | For PayPal Payments |