Email template — Request CSP change from Shopify
You can use this template when asking Shopify Plus Support or your Shopify Account Manager to update the Content-Security-Policy header so Miniplayer, Co-browsing, and related features can work on your store.
For Live Shopping (Miniplayer)
Subject: Technical Request: Update CSP frame-ancestors Header for [Store Name]
Message:
Hi Shopify Support,
We are implementing Bambuser Live Shopping and need to enable the Miniplayer feature. To support this, we need to update our site's Content Security Policy (CSP). Currently our frame-ancestors directive is set to 'none', which blocks the site from being rendered within an iframe on our own domain.
Could you please update this header from:
Content-Security-Policy: frame-ancestors 'none';
to:
Content-Security-Policy: frame-ancestors 'self';
This allows our website to be framed only by our own domain, which is required for our video commerce tools and keeps the site secure.
For Video Consultation (Co-browsing, Miniplayer)
Subject: Technical Request: Update CSP frame-ancestors Header for [Store Name]
Message:
Hi Shopify Support,
We are implementing Bambuser Video Consultation and need to enable co-browsing and mini-player features. To support this, we need to update our site's Content Security Policy (CSP). Currently our frame-ancestors directive is set to 'none', which blocks the site from being rendered within an iframe on our own domain.
Could you please update this header from:
Content-Security-Policy: frame-ancestors 'none';
to:
Content-Security-Policy: frame-ancestors 'self';
This allows our website to be framed only by our own domain, which is required for our video commerce tools and keeps the site secure.