Content Security Policy (CSP)

Below is the policy (CSP) for allowing OpenReplay to record sessions. This is applicable to OpenReplay Cloud users, but it can be adapted for self-hosted installations:

worker-src ‘self’ blob: https://*; script-src ‘self’ https://*;

Please note that the worker-src directive is not supported in Safari (and mobile Safari). Using it should not prevent OpenReplay from recording sessions.