Integration security guide

 Content Security Policy (CSP)

If you’ve deployed a Content Security Policy, the full set of directives that Super Payments require are:

• connect-src, https://*.superpayments.com https://api.storyblok.com/ https://q4g4k4pw47biltffyqrfab7q7m0jaagm.lambda-url.ap-south-1.on.aws https://*.sentry.io https://web-sdk.smartlook.com https://cdn.segment.com https://*.seondnsresolve.com https://api.stripe.com https://maps.googleapis.com
• script-src, https://*.superpayments.com https://js.stripe.com https://b.stripecdn.com https://m.stripe.network
• img-src, https://cdn.superpayments.com https://a.storyblok.com
• frame-src, https://*.js.stripe.com https://js.stripe.com https://hooks.stripe.com