Powered by Adobe Commerce 2.4.7-p4

csp.jpg

Content security policies(CSP) by AimsInfosoft

PRODUCT:
0
TOTAL:

Overview

Back to top

 Provide all details of your extension’s features and functionality. Include any updates.

Magento introduced the Content Security Policies (CSP) tool to provide protection against Cross-Site Scripting (XSS) and similar attacks. This crucial means should not be ignored by merchants or, even worse, disabled/uninstalled because it is meant to protect customers from card skimmers, session hijacking, clickjacking, etc.

As it usually goes, the new built-in tool brings new headaches and challenges to those who manage and maintain e-commerce shops.

The built-in CSP whitelist doesn't includes various external resources used throughout their websites: YouTube/Vimeo, external images, CDN, Live Chats, social network connectors, metrics, and services. Depending on the security mode deployed, these resources either can't operate as intended or result in numerous errors in the browser console.

This extension is built to help you maintain the CSP whitelist by providing means add new content security mode from within the Magento admin panel.

Features

  • Provides a quick way to add new domains with proper group/type
  • Allows Any Type Of Third Party Script, Css, Image, Iframe Etc That Has Been Blocked By Magento Content Security Policy.
  • On Single Tap Your Script Will Execute On Your Magento 2 E-Commerce Stores.
  • Easy To Configure In Backend.
  • Variety Of Policy Option To Allow Execution.
  • Fixes `directive 'frame-ancestors' does not support the source expression ''unsafe-inline''`

Technical Specifications

Back to top

Seller profile

Aims Infosoft

Seller contact

E-mail

Current Version

1.0.7

Adobe Commerce platform compatibility

Magento Open Source: 2.4 (current)

Type

Stable Build

Updated

18 December, 2024

Categories

Extensions, Content & Customizations

Documentation

User Guides

License Type

Open Software License 3.0 (OSL-3.0)

Policy

Privacy Policy

Quality Report

Back to top

Installation & Varnish Tests

Passed

Coding Standard

Passed

Plagiarism Check

Passed

Malware Check

Passed

Marketing Review

Passed

Manual Testing

Passed

All tests were conducted on the latest versions of Adobe Commerce that existed for the compatible release lines at the moment of the extension submission. Latest versions of all other software were used, as applicable.

Release Notes

Back to top

1.0.7:

  • Compatible with Magento Open Source : 2.4
  • Stability: Stable Build
  • Description:

    Fixed the CSP error on the checkout page.

1.0.6:

  • Compatible with Magento Open Source : 2.4
  • Stability: Stable Build
  • Description:

    Compatible with php 8.3.

1.0.5:

  • Compatible with Magento Open Source : 2.4
  • Stability: Stable Build
  • Description:

    Compatible with Open Source (CE) : 2.3 2.4
    Stability: Stable Build

Support

Back to top

The best place to start if you need help with a specific extension is to contact the developer. All Adobe Commerce developers have both a contact email and a support email listed.

Contact Vendor

Q & A

Back to top

Reviews

Back to top