Expand my Community achievements bar.

Join us at Adobe Summit 2024 for the Coffee Break Q&A Live series, a unique opportunity to network with and learn from expert users, the Adobe product team, and Adobe partners in a small group, 30 minute AMA conversations.
SOLVED

ActivityMap Firefox extension

Avatar

Adobe Champion

Hello - I'm attempting to access the Activity Map extension (v1.0 Apr/2020) in Firefox/Mac.  It worked a couple weeks ago.  Now just after completing  the  login I see an error message stating there's a content security policy (CSP) issue.  I've reviewed browser security/privacy settings but no luck.  No luck with searching this issue either.  Thanks for any info/recommendations.

 Screen Shot 2020-06-03 at 2.59.43 PM.png

1 Accepted Solution

Avatar

Correct answer by
Level 4

It looks like your company has strict security settings that prevent the ActivityMap frame from being injected into the web page.It is because of your Content-Security-Policy. Here are two ways you could update the content security policy to have ActivityMap work on their site:

Wild card domains

  • For 'connect-src', add sitecatalyst.omniture.com
  • For 'frame-src', add *.omniture.com

No wild card domains

  • For 'connect-src', add sitecatalyst.omniture.com
  • For 'frame-src', add sitecatalyst.omniture.com authorize.omniture.com sc5.omniture.com

Preference would be that you use the wild card domains, in case the Experience Cloud login process ever changes in the future and uses different domains.

 

Hope this helps!

 

Thanks,

Saumya

View solution in original post

2 Replies

Avatar

Correct answer by
Level 4

It looks like your company has strict security settings that prevent the ActivityMap frame from being injected into the web page.It is because of your Content-Security-Policy. Here are two ways you could update the content security policy to have ActivityMap work on their site:

Wild card domains

  • For 'connect-src', add sitecatalyst.omniture.com
  • For 'frame-src', add *.omniture.com

No wild card domains

  • For 'connect-src', add sitecatalyst.omniture.com
  • For 'frame-src', add sitecatalyst.omniture.com authorize.omniture.com sc5.omniture.com

Preference would be that you use the wild card domains, in case the Experience Cloud login process ever changes in the future and uses different domains.

 

Hope this helps!

 

Thanks,

Saumya

Avatar

Level 4
@ActiveMitchell - Did the answer provided in my last comment help?