Top
Whitelist Whatfix domains on Salesforce Lightning
  • 21 Jun 2024
  • 2 Minutes To Read
  • Dark
    Light
  • PDF

Whitelist Whatfix domains on Salesforce Lightning

  • Dark
    Light
  • PDF

Article summary

Whitelisting Whatfix domains on Salesforce Lightning enables Whatfix to communicate with Salesforce Lightning and fetch Whatfix content-related data. If Whatfix domains are not whitelisted, you won't be able to track how your content performs using Whatfix Analytics.

your title goes here

Only Salesforce Lightning Admins can perform the following action.

Use the following steps to whitelist Whatfix domains on Salesforce Lightning:

  1. Log in to your Salesforce Lightning account.

  2. Click the Settings icon, and then click Setup.
    SF_SETUP

  3. In the left pane, click Security.
    SF_security

  4. Click CSP Trusted Sites.
    SF_CSP_sites

  5. Click the New Trusted Site button.
    SF_new_trusted_site.png

  6. In the Trusted Site Name field, enter a name for the site. For example, enter WhatfixDomain.
    SF_site_name.png

Note

This field does not accept spaces in the name.

You need to whitelist 4 domains and the procedure for each is mentioned.

your title goes here
For https://whatfix.com 

  1. In the Trusted Site URL field, enter https://whatfix.com.
    SF_trusted_site_url.png

  2. In the CSP Directives section, check the Allow site for connect-src and Allow site for frame-src checkboxes as the directives.
    salesforce_settings_CSP_directives

your title goes here

By default, the Allow site for connect-src & Allow site for frame-src checkboxes are disabled.

  1. Click the Save & New button.
    SF_save_and_new_button{height="96" width="303"}
    SF_save_and_new_button

The CSP Trusted Sites section displays the list of whitelisted Whatfix domains:
SF_CSP_list.png

For https://cdn.whatfix.com 

  1. In the Trusted Site URL field, enter https://cdn.whatfix.com.
    salesforce_settings_CSP_whatfix_CDN_url

  2. In the CSP Directives section, check the Allow site for connect-src and Allow site for frame-src checkboxes as the directives.
    salesforce_settings_CSP_directives

your title goes here

By default, the Allow site for connect-src & Allow site for frame-src checkboxes are disabled.

  1. Click the Save & New button.
    SF_save_and_new_button

You can see the list of whitelisted Whatfix domains in the CSP Trusted Sites section.
SF_CSP_list.png

your title goes here

The following domains also need to be whitelisted if you have configured Google Analytics for your account.

  • https://www.google-analytics.com
  • https://analytics.google.com
For https://www.google-analytics.com 

  1. In the Trusted Site URL field, enter https://www.google-analytics.com.
    salesforce_settings_CSP_GA_site_URL

  2. In the CSP Directives section, check the Allow site for connect-src checkbox as one of the directives.
    JSintegration_Salesforce_CSPdirectives

your title goes here

By default, the Allow site for connect-src checkbox is disabled.

  1. Click the Save & New button.
    SF_save_and_new_button

You can see the list of whitelisted Whatfix domains in the CSP Trusted Sites section.
SF_CSP_list.png

For https://analytics.google.com  

  1. In the Trusted Site URL field, enter https://analytics.google.com
    salesforce_settings_CSP_GA_analytics_site_URL_

  2. In the CSP Directives section, check Allow site for connect-src checkbox as one of the directives.
    JSintegration_Salesforce_CSPdirectives

your title goes here

By default, the Allow site for connect-src is disabled.

  1. Click the Save & New button.
    SF_save_and_new_button

The CSP Trusted Sites section displays the list of whitelisted Whatfix domains:
SF_CSP_list.png


Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.