Content Security Policy (CSP)

Below is the policy (CSP) for allowing OpenReplay to record sessions.

worker-src ‘self’ blob: https://*; script-src ‘self’ https://*;

Please note that the worker-src directive is not supported in Safari (and mobile Safari). Using it should not prevent OpenReplay from recording sessions.

If you have any questions about this process, feel free to reach out to us on our Slack or check out our Forum.