Whitelisting Rules for Content Security Policy (CSP)

If you have a Content Security Policy (CSP) enabled in your app configuration, ensure that the following URLs are whitelisted:

script-src

  • *.velt.dev
  • *.api.velt.dev
  • *.firebaseio.com
  • *.googleapis.com
  • wss://*.firebaseio.com
  • wss://*.firebasedatabase.app

connect-src

  • *.velt.dev
  • *.api.velt.dev
  • *.firebaseio.com
  • *.googleapis.com
  • wss://*.firebaseio.com
  • wss://*.firebasedatabase.app

img-src

  • storage.googleapis.com
  • firebasestorage.googleapis.com

media-src

  • storage.googleapis.com
  • firebasestorage.googleapis.com