[{"data":1,"prerenderedAt":852},["ShallowReactive",2],{"header:help":3,"footer:default":67,"story:navigation\u002Fsearch:help":250,"story:help\u002Fcategories":288,"story:help\u002Farticles\u002Fconfigure-a-content-security-policy-csp-":314,"no-guide:configure-a-content-security-policy-csp-":59,"article:\u002Fhelp\u002Farticles\u002Fconfigure-a-content-security-policy-csp-":614,"story:contact":633,"help:tree:53491693-cc35-486b-9850-57a6115cc6b5":822,"_apollo:default":851},{"name":4,"created_at":5,"published_at":6,"updated_at":7,"id":8,"uuid":9,"content":10,"slug":57,"full_slug":58,"sort_by_date":59,"position":60,"tag_list":61,"is_startpage":24,"parent_id":62,"meta_data":59,"group_id":63,"first_published_at":64,"release_id":59,"lang":65,"path":59,"alternates":66,"default_full_slug":59,"translated_slugs":59},"Help Center Header","2024-08-09T18:06:34.939Z","2024-10-21T21:58:39.217Z","2024-10-21T21:58:39.232Z",10082752,"3e9b88f7-c163-4657-a2f2-62532d600fad",{"_uid":11,"link":12,"badge":16,"items":17,"title":13,"buttons":50,"new_tab":24,"submenu":51,"alignment":13,"component":52,"badge_link":53,"top_menu_items":56},"e5645a1a-f991-40e8-8d67-e40ebc082b5a",{"id":13,"url":13,"linktype":14,"fieldtype":15,"cached_url":13},"","story","multilink","Help Center",[18,27,34,39,44],{"_uid":19,"link":20,"title":23,"new_tab":24,"submenu":25,"component":26},"5cbe2861-1f49-4166-97da-a4dddd8105e3",{"id":21,"url":13,"linktype":14,"fieldtype":15,"cached_url":22},"4c0a2d99-ec30-4579-8ef1-6bf5564d4839","help\u002Fcategories\u002F","Articles",false,[],"header___item",{"_uid":28,"link":29,"title":32,"new_tab":33,"component":26},"1c8edeb5-b9e9-4cb8-b1c6-c1f292f7d7cd",{"id":13,"url":30,"linktype":31,"fieldtype":15,"cached_url":30},"https:\u002F\u002Fwiki.foxycart.com\u002F","url","Documentation",true,{"_uid":35,"link":36,"title":38,"new_tab":33,"component":26},"8d7df70e-f087-4da0-b616-6f0e9a5af35c",{"id":13,"url":37,"linktype":31,"fieldtype":15,"cached_url":37},"https:\u002F\u002Fapi.foxycart.com\u002F","API Documentation",{"_uid":40,"link":41,"title":43,"new_tab":33,"component":26},"f76e7944-23d5-4652-87e4-cdae79272762",{"id":13,"url":42,"linktype":31,"fieldtype":15,"cached_url":42},"https:\u002F\u002Fstatus.foxy.io\u002F","System Status",{"_uid":45,"link":46,"title":49,"new_tab":24,"component":26},"0de16771-4c84-466c-a1da-d8568113c71f",{"id":47,"url":13,"linktype":14,"fieldtype":15,"cached_url":48},"01e4e370-f9b9-45af-8fa9-f15540699b0d","contact","Contact Us",[],[],"header",{"id":54,"url":13,"linktype":14,"fieldtype":15,"cached_url":55},"4a679eb7-662d-4ea4-a976-5a2acbf0b663","help\u002F",[],"help-header","navigation\u002Fhelp-header",null,20,[],10082747,"71b81c2e-5e09-48a1-a397-a3c72fcd344a","2022-09-21T14:50:25.655Z","default",[],{"name":68,"created_at":69,"published_at":70,"updated_at":71,"id":72,"uuid":73,"content":74,"slug":243,"full_slug":244,"sort_by_date":59,"position":245,"tag_list":246,"is_startpage":24,"parent_id":62,"meta_data":59,"group_id":247,"first_published_at":248,"release_id":59,"lang":65,"path":59,"alternates":249,"default_full_slug":59,"translated_slugs":59},"Default Footer","2024-08-09T18:06:59.024Z","2025-09-04T06:24:46.223Z","2025-09-04T06:24:46.241Z",10082753,"e59e67ac-248a-482f-84a1-53d4f318186a",{"_uid":75,"about":76,"logos":77,"socials":82,"sections":108,"component":225,"cta_title":226,"bottom_links":227,"cta_subtitle":241,"cta_button_link":242,"cta_button_text":183},"830983f5-c4c4-43c8-b150-86a5e3fa6dc8","Foxy’s hosted cart & payment page allow you to sell anything, using your existing website or platform.",[78],{"id":79,"alt":13,"name":13,"focus":13,"title":13,"filename":80,"copyright":13,"fieldtype":81},14760,"https:\u002F\u002Fa-us.storyblok.com\u002Ff\u002F1001040\u002Fx\u002F3b030847ec\u002Fb-corp.svg","asset",[83,90,96,102],{"_uid":84,"icon":85,"link":86,"name":88,"component":89},"faf0a618-ea94-42ea-9182-03be18c43216","fa-facebook",{"id":13,"url":87,"linktype":31,"fieldtype":15,"cached_url":87},"https:\u002F\u002Fwww.facebook.com\u002Ffoxycart","Facebook","footer___social",{"_uid":91,"icon":92,"link":93,"name":95,"component":89},"14309c18-7e79-423e-b375-34555bac0811","fa-instagram",{"id":13,"url":94,"linktype":31,"fieldtype":15,"cached_url":94},"https:\u002F\u002Fwww.instagram.com\u002Ffoxy_io","Instagram",{"_uid":97,"icon":98,"link":99,"name":101,"component":89},"8f7fe7cf-0dd3-4596-8334-226ea466716a","fa-linkedin",{"id":13,"url":100,"linktype":31,"fieldtype":15,"cached_url":100},"https:\u002F\u002Fwww.linkedin.com\u002Fcompany\u002Ffoxycart.com","LinkedIn",{"_uid":103,"icon":104,"link":105,"name":107,"component":89},"90a675b4-dd97-40b5-be09-00a87223d4c5","fa-youtube",{"id":13,"url":106,"linktype":31,"fieldtype":15,"cached_url":106},"https:\u002F\u002Fwww.youtube.com\u002Fuser\u002Ffoxycart","Youtube",[109,139,184,206],{"_uid":110,"name":111,"items":112,"component":138},"82849945-282f-488c-b18d-a8d2252f514a","Company",[113,120,126,132],{"_uid":114,"link":115,"title":118,"new_tab":24,"component":119},"1f699ab1-938b-4d9d-9825-aabcbe6f57fe",{"id":116,"url":13,"linktype":14,"fieldtype":15,"cached_url":117},"63634293-a749-4226-9439-9f38ee6dcda0","about-us","About Us","footer___menu_items",{"_uid":121,"link":122,"title":125,"new_tab":24,"component":119},"b26b00f1-a0e7-4be2-8ab3-428b8cc841f8",{"id":123,"url":13,"linktype":14,"fieldtype":15,"cached_url":124},"26cb7c55-faed-4a77-a291-1552d4111b3e","how-foxy-works","How Foxy Works",{"_uid":127,"link":128,"title":131,"new_tab":24,"component":119},"b40c68a0-1ceb-4226-9515-6176534f61fe",{"id":129,"url":13,"linktype":14,"fieldtype":15,"cached_url":130},"dc6657d7-7f4f-4c0d-b781-e971b038ee26","for-good","Foxy For Good",{"_uid":133,"link":134,"title":137,"new_tab":24,"component":119},"3ad0c134-bef9-4fff-b891-e09f16109036",{"id":135,"url":13,"linktype":14,"fieldtype":15,"cached_url":136},"23cae210-baf4-4588-9862-d09f4f52ccd2","brand-assets","Brand Assets","footer___section",{"_uid":140,"name":141,"items":142,"component":138},"a6805fa8-ac60-47f1-b8f0-f27aded0afbe","Product",[143,149,155,161,167,173,179],{"_uid":144,"link":145,"title":148,"new_tab":24,"component":119},"b39c8a4e-2383-486f-b76a-11fbb15d8134",{"id":146,"url":13,"linktype":14,"fieldtype":15,"cached_url":147},"bb04690f-fe98-4ce6-80be-05b950f2364f","features\u002F","Features",{"_uid":150,"link":151,"title":154,"new_tab":24,"component":119},"64f8a41f-c181-433d-bc0a-fc94e71ecbf6",{"id":152,"url":13,"linktype":14,"fieldtype":15,"cached_url":153},"c450c58d-761d-48c0-a9af-0b064611689b","pricing","Pricing",{"_uid":156,"link":157,"title":160,"new_tab":24,"component":119},"6e0b287f-fd8c-4146-9e0e-0ab0b5c9ce3c",{"id":158,"url":13,"linktype":14,"fieldtype":15,"cached_url":159},"fab20ad9-e76a-4947-b709-3a6fdfa88028","blog\u002Fcategories\u002Fproduct-updates","Product Updates",{"_uid":162,"link":163,"title":166,"new_tab":24,"component":119},"47e5a074-a6b5-4f1c-8c2f-89a2ae9f83eb",{"id":164,"url":13,"linktype":14,"fieldtype":15,"cached_url":165},"d2c83612-d611-47f3-a3b4-ca7fe08540b8","changelogs\u002F","Changelogs",{"_uid":168,"link":169,"title":172,"new_tab":24,"component":119},"b5c08774-542f-4ffd-b357-c94d674488b9",{"id":170,"url":13,"linktype":14,"fieldtype":15,"cached_url":171},"08876121-0df3-4ed9-aa11-902b3e41cd02","whats-next","What's Next",{"_uid":174,"link":175,"title":178,"new_tab":24,"component":119},"9c2704ed-6d9f-43e1-9e67-c8d91c083288",{"id":176,"url":13,"linktype":14,"fieldtype":15,"cached_url":177},"056a7857-b18f-4025-8f97-91a38fc19bc8","compare\u002F","Compare",{"_uid":180,"link":181,"title":183,"new_tab":24,"component":119},"5f2db35b-674b-406a-8fa7-d246633af9fe",{"id":13,"url":182,"linktype":31,"fieldtype":15,"cached_url":182},"https:\u002F\u002Fadmin.foxy.io\u002Fsign-up","Try Foxy Free",{"_uid":185,"name":186,"items":187,"component":138},"63fa1f29-4252-4640-9922-fe310e69e54a","Security",[188,194,200],{"_uid":189,"link":190,"title":193,"new_tab":24,"component":119},"1158ddb6-9eb0-466f-8eb6-7ca2ae66c8b8",{"id":191,"url":13,"linktype":14,"fieldtype":15,"cached_url":192},"1f58fb2c-8681-4742-b6e8-09999beae9f6","security-contact","Security Contact",{"_uid":195,"link":196,"title":199,"new_tab":24,"component":119},"9a79c54a-6022-4dfd-854b-766f5e4703ba",{"id":197,"url":13,"linktype":14,"fieldtype":15,"cached_url":198},"55cbfcc3-425a-4261-8037-54e919851d2d","pci","PCI Compliance",{"_uid":201,"link":202,"title":205,"new_tab":24,"component":119},"0b85f5b6-9534-4071-b323-b39d053dd4d7",{"id":203,"url":13,"linktype":14,"fieldtype":15,"cached_url":204},"c3ac0fe3-83e2-4879-afbd-d4c83e1590df","help\u002Farticles\u002Four-official-domains-public-code","Domains & Codebases",{"_uid":207,"name":208,"items":209,"component":138},"998ded67-d107-49f4-8154-ca6be51671ec","Support",[210,213,216,219,222],{"_uid":211,"link":212,"title":16,"new_tab":24,"component":119},"594ffd35-3049-4004-bb08-0db568ebd819",{"id":54,"url":13,"linktype":14,"fieldtype":15,"cached_url":55},{"_uid":214,"link":215,"title":32,"new_tab":33,"component":119},"0a1a55ab-a985-4f9d-8b42-26da714d0c1c",{"id":13,"url":30,"linktype":31,"fieldtype":15,"cached_url":30},{"_uid":217,"link":218,"title":38,"new_tab":33,"component":119},"61e0b7c8-aadf-419b-a339-b3ccabc65bf4",{"id":13,"url":37,"linktype":31,"fieldtype":15,"cached_url":37},{"_uid":220,"link":221,"title":43,"new_tab":33,"component":119},"fd67a89e-1c54-4d31-94b5-64be999062d6",{"id":13,"url":42,"linktype":31,"fieldtype":15,"cached_url":42},{"_uid":223,"link":224,"title":49,"new_tab":24,"component":119},"231a6f71-e996-4ad4-b033-d4d5542f34f0",{"id":47,"url":13,"linktype":14,"fieldtype":15,"cached_url":48},"footer","Get started with our *unlimited free trial*.",[228,235],{"_uid":229,"link":230,"text":233,"component":234},"f0b77210-2632-45a2-8436-e57cad84d01a",{"id":231,"url":13,"linktype":14,"fieldtype":15,"cached_url":232},"60ba16a2-c1f4-485f-b978-8d2eeeafbf5a","terms-of-service","Terms of Service","footer___bottom_links",{"_uid":236,"link":237,"text":240,"component":234},"4bd497b0-993f-4b4d-a5b7-8a49c7c8fec9",{"id":238,"url":13,"linktype":14,"fieldtype":15,"cached_url":239},"332302b9-1d18-4016-b9c8-9b33c72d782b","privacy-policy","Privacy Policy","No credit card required.",{"id":13,"url":182,"linktype":31,"fieldtype":15,"cached_url":182},"default-footer","navigation\u002Fdefault-footer",50,[],"11006268-07f9-41e9-96f3-c51fb723399d","2022-09-21T20:39:02.357Z",[],{"name":251,"created_at":252,"published_at":253,"updated_at":254,"id":255,"uuid":256,"content":257,"slug":279,"full_slug":282,"sort_by_date":59,"position":283,"tag_list":284,"is_startpage":24,"parent_id":62,"meta_data":59,"group_id":285,"first_published_at":286,"release_id":59,"lang":65,"path":59,"alternates":287,"default_full_slug":59,"translated_slugs":59},"Search","2024-10-21T22:08:54.973Z","2025-05-26T09:17:25.790Z","2025-05-26T09:17:25.804Z",13592003,"14cbc359-9ac1-4a7a-a8de-ad4ac8ef26d4",{"_uid":258,"name":251,"indices":259,"summary":13,"component":279,"primary_image":280},"5e4a56e8-76f1-4790-b3a7-70f1be97d042",[260,265,269,274],{"key":261,"_uid":262,"icon":13,"name":263,"component":264},"all","c12a3210-7323-4273-8217-5215e52efe84","All","index",{"key":266,"_uid":267,"icon":268,"name":23,"component":264},"help_center_article","5acff080-95e4-44d3-8dcf-1b19720af382","fa-file-alt",{"key":270,"_uid":271,"icon":272,"name":273,"component":264},"help_center_guide","b8fbc206-c083-471e-a1f0-0ebeb90a669d","fa-book","Guides",{"key":275,"_uid":276,"icon":277,"name":278,"component":264},"blog_post","23419e83-2e56-4c4c-8a05-9fd1b3c9a9bd","fa-file-image","Blog Posts","search",{"id":59,"alt":59,"name":13,"focus":59,"title":59,"source":59,"filename":13,"copyright":59,"fieldtype":81,"meta_data":281},{},"navigation\u002Fsearch",60,[],"11e1fd31-95cd-4fc9-b736-8b8910663e6c","2024-10-21T23:17:05.904Z",[],{"name":23,"created_at":289,"published_at":290,"updated_at":291,"id":292,"uuid":21,"content":293,"slug":307,"full_slug":22,"sort_by_date":59,"position":308,"tag_list":309,"is_startpage":33,"parent_id":310,"meta_data":59,"group_id":311,"first_published_at":312,"release_id":59,"lang":65,"path":59,"alternates":313,"default_full_slug":59,"translated_slugs":59},"2022-09-19T14:42:29.685Z","2024-07-30T18:17:22.506Z","2024-07-30T18:17:22.525Z",2660,{"_uid":294,"icon":13,"name":23,"guides":295,"pinned":24,"summary":296,"category":13,"component":297,"blog_posts":298,"content_hub":24,"icon_custom":299,"case_studies":300,"faq_sections":301,"help_articles":302,"featured_guides":303,"mailbox_category":13,"featured_articles":304,"featured_blog_posts":305,"featured_case_studies":306},"d6dae89a-907a-4bf7-82de-fe2ba875ee6e",[],"Get your questions answered with our browsable knowledge base.","help_center_category",[],{"id":59,"alt":59,"name":13,"focus":59,"title":59,"filename":13,"copyright":59,"fieldtype":81},[],[],[],[],[],[],[],"categories",530,[],2658,"19ebcdd2-027f-47f5-9a5b-a8992c959578","2022-09-19T16:24:39.219Z",[],{"name":315,"created_at":316,"published_at":317,"updated_at":318,"id":319,"uuid":320,"content":321,"slug":607,"full_slug":608,"sort_by_date":59,"position":609,"tag_list":610,"is_startpage":24,"parent_id":611,"meta_data":59,"group_id":612,"first_published_at":317,"release_id":59,"lang":65,"path":59,"alternates":613,"default_full_slug":59,"translated_slugs":59},"Configure a Content Security Policy (CSP)","2026-07-16T04:18:52.837Z","2026-07-16T04:20:57.137Z","2026-07-16T04:20:57.159Z",198598380950336,"53491693-cc35-486b-9850-57a6115cc6b5",{"_uid":322,"body":323,"name":315,"image":602,"pinned":24,"summary":604,"category":605,"component":266,"related_articles":606},"c6ef9197-7b97-4cb9-98ab-4cddc35cfd6e",{"type":324,"content":325},"doc",[326,349,354,361,391,396,402,407,501,506,511,561,566],{"type":327,"attrs":328,"content":329},"paragraph",{"textAlign":59},[330,333,340,342,347],{"text":331,"type":332},"A Content Security Policy (CSP) acts as a whitelist for your checkout page, controlling which external domains scripts, styles, fonts, and other resources are allowed to load from. You configure it in the ","text",{"text":334,"type":332,"marks":335},"Foxy admin",[336],{"type":337,"attrs":338},"link",{"href":339,"uuid":59,"anchor":59,"target":59,"linktype":31},"https:\u002F\u002Fadmin.foxy.io",{"text":341,"type":332},", under ",{"text":343,"type":332,"marks":344},"Settings → Checkout",[345],{"type":346},"bold",{"text":348,"type":332},".",{"type":327,"attrs":350,"content":351},{"textAlign":59},[352],{"text":353,"type":332},"If you haven’t customized your checkout with your own scripts or templates, you can likely enable CSP directly — but we still recommend testing first using the steps below.",{"type":355,"attrs":356,"content":358},"heading",{"level":357,"textAlign":59},2,[359],{"text":360,"type":332},"Why it matters",{"type":327,"attrs":362,"content":363},{"textAlign":59},[364,366,371,373,377,379,383,385,389],{"text":365,"type":332},"Foxy’s checkout allows custom scripts for things like tracking or analytics, and each domain those scripts load from (and send data to) needs to be allow-listed in your CSP. For example, if you add a tracking script hosted at ",{"text":367,"type":332,"marks":368},"js.example.com",[369],{"type":370},"code",{"text":372,"type":332}," that sends data to ",{"text":374,"type":332,"marks":375},"tracking.example.com",[376],{"type":370},{"text":378,"type":332},", you’d add both domains to your CSP. If ",{"text":380,"type":332,"marks":381},"example.com",[382],{"type":370},{"text":384,"type":332}," were later compromised and an attacker tried to send your customers’ data to ",{"text":386,"type":332,"marks":387},"hacker.evil.tld",[388],{"type":370},{"text":390,"type":332},", the CSP would block that request. A CSP doesn’t prevent a compromise from happening, but it can significantly limit the damage — and it can also help support PCI compliance.",{"type":355,"attrs":392,"content":393},{"level":357,"textAlign":59},[394],{"text":395,"type":332},"Steps",{"type":355,"attrs":397,"content":399},{"level":398,"textAlign":59},3,[400],{"text":401,"type":332},"Step 1: Test in report-only mode",{"type":327,"attrs":403,"content":404},{"textAlign":59},[405],{"text":406,"type":332},"Report-only mode logs policy violations without blocking anything, so you can confirm your policy is correct before it can break your checkout.",{"type":408,"attrs":409,"content":411},"ordered_list",{"order":410},1,[412,430,442,463,487,494],{"type":413,"content":414},"list_item",[415],{"type":327,"attrs":416,"content":417},{"textAlign":59},[418,420,424,426,429],{"text":419,"type":332},"In the ",{"text":334,"type":332,"marks":421},[422],{"type":337,"attrs":423},{"href":339,"uuid":59,"anchor":59,"target":59,"linktype":31},{"text":425,"type":332},", go to ",{"text":343,"type":332,"marks":427},[428],{"type":346},{"text":348,"type":332},{"type":413,"content":431},[432],{"type":327,"attrs":433,"content":434},{"textAlign":59},[435,437,441],{"text":436,"type":332},"Turn on ",{"text":438,"type":332,"marks":439},"Enable Report-Only CSP",[440],{"type":346},{"text":348,"type":332},{"type":413,"content":443},[444],{"type":327,"attrs":445,"content":446},{"textAlign":59},[447,449,453,455,461],{"text":448,"type":332},"Set a ",{"text":450,"type":332,"marks":451},"Reporting URL",[452],{"type":346},{"text":454,"type":332}," — this is where violation logs are sent, and it must be a valid URL. You can use a free service like Pipedream or Webhook.site to receive these reports, or any endpoint you control that can accept a request and log it somewhere (email, a log file, a Slack channel). ",{"text":456,"type":332,"marks":457},"Contact us",[458],{"type":337,"attrs":459},{"href":460,"uuid":59,"anchor":59,"target":59,"linktype":31},"https:\u002F\u002Ffoxy.io\u002Fcontact\u002F",{"text":462,"type":332}," if you’d like help — we may have an as-yet-undocumented option available.",{"type":413,"content":464},[465],{"type":327,"attrs":466,"content":467},{"textAlign":59},[468,470,474,476,479,481,485],{"text":469,"type":332},"Under ",{"text":471,"type":332,"marks":472},"Custom script sources",[473],{"type":346},{"text":475,"type":332},", add the domains hosting the scripts and styles you use (e.g., ",{"text":380,"type":332,"marks":477},[478],{"type":370},{"text":480,"type":332},", ",{"text":482,"type":332,"marks":483},"*.example.com",[484],{"type":370},{"text":486,"type":332},").",{"type":413,"content":488},[489],{"type":327,"attrs":490,"content":491},{"textAlign":59},[492],{"text":493,"type":332},"Test all of your checkout flows — guest and logged-in customers, payments, and coupons.",{"type":413,"content":495},[496],{"type":327,"attrs":497,"content":498},{"textAlign":59},[499],{"text":500,"type":332},"Check your reporting URL for unexpected violations, such as domains you forgot to add.",{"type":355,"attrs":502,"content":503},{"level":398,"textAlign":59},[504],{"text":505,"type":332},"Step 2: Enforce CSP",{"type":327,"attrs":507,"content":508},{"textAlign":59},[509],{"text":510,"type":332},"Once you’ve tested in report-only mode and confirmed there are no unexpected violations, copy the same settings over to the non-report-only CSP to start enforcing it.",{"type":408,"attrs":512,"content":513},{"order":410},[514,529,536,543,550],{"type":413,"content":515},[516],{"type":327,"attrs":517,"content":518},{"textAlign":59},[519,520,524,525,528],{"text":419,"type":332},{"text":334,"type":332,"marks":521},[522],{"type":337,"attrs":523},{"href":339,"uuid":59,"anchor":59,"target":59,"linktype":31},{"text":425,"type":332},{"text":343,"type":332,"marks":526},[527],{"type":346},{"text":348,"type":332},{"type":413,"content":530},[531],{"type":327,"attrs":532,"content":533},{"textAlign":59},[534],{"text":535,"type":332},"Apply the same domains you tested in report-only mode to the enforced CSP settings.",{"type":413,"content":537},[538],{"type":327,"attrs":539,"content":540},{"textAlign":59},[541],{"text":542,"type":332},"Continue monitoring your reporting endpoint after enforcing.",{"type":413,"content":544},[545],{"type":327,"attrs":546,"content":547},{"textAlign":59},[548],{"text":549,"type":332},"Confirm your checkout still functions as expected, including any custom JavaScript (analytics, UI changes, etc.).",{"type":413,"content":551},[552],{"type":327,"attrs":553,"content":554},{"textAlign":59},[555,559],{"text":456,"type":332,"marks":556},[557],{"type":337,"attrs":558},{"href":460,"uuid":59,"anchor":59,"target":59,"linktype":31},{"text":560,"type":332}," if you run into any issues.",{"type":355,"attrs":562,"content":563},{"level":357,"textAlign":59},[564],{"text":565,"type":332},"Notes",{"type":567,"content":568},"bullet_list",[569,581,588,595],{"type":413,"content":570},[571],{"type":327,"attrs":572,"content":573},{"textAlign":59},[574,576,579],{"text":575,"type":332},"If your checkout breaks after enabling CSP, check your reporting endpoint for the blocked domain, then add it to ",{"text":471,"type":332,"marks":577},[578],{"type":346},{"text":580,"type":332}," in the Foxy admin.",{"type":413,"content":582},[583],{"type":327,"attrs":584,"content":585},{"textAlign":59},[586],{"text":587,"type":332},"Always test in report-only mode first — don’t enforce a CSP you haven’t verified.",{"type":413,"content":589},[590],{"type":327,"attrs":591,"content":592},{"textAlign":59},[593],{"text":594,"type":332},"Update your CSP whenever you add a new integration or script.",{"type":413,"content":596},[597],{"type":327,"attrs":598,"content":599},{"textAlign":59},[600],{"text":601,"type":332},"Review your violation logs periodically for suspicious activity.",{"id":59,"alt":59,"name":13,"focus":59,"title":59,"source":59,"filename":13,"copyright":59,"fieldtype":81,"meta_data":603},{},"How to set up and enforce a Content Security Policy on your Foxy checkout to control which scripts, styles, and other resources are allowed to load.","805729bf-0e8a-4d3f-92b4-fcc4c825b83a",[],"configure-a-content-security-policy-csp-","help\u002Farticles\u002Fconfigure-a-content-security-policy-csp-",-3220,[],2659,"41b5f026-c40d-459e-8b92-725724f7ac59",[],{"html":615,"sections":616,"segments":629},"\u003Cp>A Content Security Policy (CSP) acts as a whitelist for your checkout page, controlling which external domains scripts, styles, fonts, and other resources are allowed to load from. You configure it in the \u003Ca href=\"https:\u002F\u002Fadmin.foxy.io\" class=\"\">Foxy admin\u003C\u002Fa>, under \u003Cstrong>Settings → Checkout\u003C\u002Fstrong>.\u003C\u002Fp>\u003Cp>If you haven’t customized your checkout with your own scripts or templates, you can likely enable CSP directly — but we still recommend testing first using the steps below.\u003C\u002Fp>\u003Csection id=\"why-it-matters\" data-title=\"Why it matters\" data-title-node=\"H2\">\u003Chr class=\"my-8\" style=\"margin-left: -48px; margin-right: -40vw\">\u003Ch2 data-anchor-id=\"why-it-matters\">Why it matters\u003C\u002Fh2>\u003Cp>Foxy’s checkout allows custom scripts for things like tracking or analytics, and each domain those scripts load from (and send data to) needs to be allow-listed in your CSP. For example, if you add a tracking script hosted at \u003Ccode class=\"badge bg-soft-danger text-danger\">js.example.com\u003C\u002Fcode> that sends data to \u003Ccode class=\"badge bg-soft-danger text-danger\">tracking.example.com\u003C\u002Fcode>, you’d add both domains to your CSP. If \u003Ccode class=\"badge bg-soft-danger text-danger\">example.com\u003C\u002Fcode> were later compromised and an attacker tried to send your customers’ data to \u003Ccode class=\"badge bg-soft-danger text-danger\">hacker.evil.tld\u003C\u002Fcode>, the CSP would block that request. A CSP doesn’t prevent a compromise from happening, but it can significantly limit the damage — and it can also help support PCI compliance.\u003C\u002Fp>\u003C\u002Fsection>\u003Csection id=\"steps\" data-title=\"Steps\" data-title-node=\"H2\">\u003Chr class=\"my-8\" style=\"margin-left: -48px; margin-right: -40vw\">\u003Ch2 data-anchor-id=\"steps\">Steps\u003C\u002Fh2>\u003C\u002Fsection>\u003Csection id=\"step-1-test-in-report-only-mode\" data-title=\"Step 1: Test in report-only mode\" data-title-node=\"H3\">\u003Ch3 data-anchor-id=\"step-1-test-in-report-only-mode\">Step 1: Test in report-only mode\u003C\u002Fh3>\u003Cp>Report-only mode logs policy violations without blocking anything, so you can confirm your policy is correct before it can break your checkout.\u003C\u002Fp>\u003Col class=\"step step-icon-sm step-dashed step-border-last-0 mt-3\">\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">1\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>In the \u003Ca href=\"https:\u002F\u002Fadmin.foxy.io\" class=\"\">Foxy admin\u003C\u002Fa>, go to \u003Cstrong>Settings → Checkout\u003C\u002Fstrong>.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">2\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Turn on \u003Cstrong>Enable Report-Only CSP\u003C\u002Fstrong>.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">3\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Set a \u003Cstrong>Reporting URL\u003C\u002Fstrong> — this is where violation logs are sent, and it must be a valid URL. You can use a free service like Pipedream or Webhook.site to receive these reports, or any endpoint you control that can accept a request and log it somewhere (email, a log file, a Slack channel). \u003Ca href=\"https:\u002F\u002Ffoxy.io\u002Fcontact\u002F\" class=\"\">Contact us\u003C\u002Fa> if you’d like help — we may have an as-yet-undocumented option available.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">4\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Under \u003Cstrong>Custom script sources\u003C\u002Fstrong>, add the domains hosting the scripts and styles you use (e.g., \u003Ccode class=\"badge bg-soft-danger text-danger\">example.com\u003C\u002Fcode>, \u003Ccode class=\"badge bg-soft-danger text-danger\">*.example.com\u003C\u002Fcode>).\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">5\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Test all of your checkout flows — guest and logged-in customers, payments, and coupons.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">6\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Check your reporting URL for unexpected violations, such as domains you forgot to add.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003C\u002Fol>\u003C\u002Fsection>\u003Csection id=\"step-2-enforce-csp\" data-title=\"Step 2: Enforce CSP\" data-title-node=\"H3\">\u003Ch3 data-anchor-id=\"step-2-enforce-csp\">Step 2: Enforce CSP\u003C\u002Fh3>\u003Cp>Once you’ve tested in report-only mode and confirmed there are no unexpected violations, copy the same settings over to the non-report-only CSP to start enforcing it.\u003C\u002Fp>\u003Col class=\"step step-icon-sm step-dashed step-border-last-0 mt-3\">\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">1\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>In the \u003Ca href=\"https:\u002F\u002Fadmin.foxy.io\" class=\"\">Foxy admin\u003C\u002Fa>, go to \u003Cstrong>Settings → Checkout\u003C\u002Fstrong>.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">2\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Apply the same domains you tested in report-only mode to the enforced CSP settings.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">3\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Continue monitoring your reporting endpoint after enforcing.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">4\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>Confirm your checkout still functions as expected, including any custom JavaScript (analytics, UI changes, etc.).\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003Cli class=\"step-item\">\u003Cdiv class=\"step-content-wrapper\">\u003Cspan class=\"step-icon step-icon-soft-primary\">5\u003C\u002Fspan>\u003Cdiv class=\"w-100 overflow-hidden\">\u003Cdiv class=\"step-content mt-2\">\u003Cp>\u003Ca href=\"https:\u002F\u002Ffoxy.io\u002Fcontact\u002F\" class=\"\">Contact us\u003C\u002Fa> if you run into any issues.\u003C\u002Fp>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fdiv>\u003C\u002Fli>\u003C\u002Fol>\u003C\u002Fsection>\u003Csection id=\"notes\" data-title=\"Notes\" data-title-node=\"H2\">\u003Chr class=\"my-8\" style=\"margin-left: -48px; margin-right: -40vw\">\u003Ch2 data-anchor-id=\"notes\">Notes\u003C\u002Fh2>\u003Cul>\u003Cli>\u003Cp>If your checkout breaks after enabling CSP, check your reporting endpoint for the blocked domain, then add it to \u003Cstrong>Custom script sources\u003C\u002Fstrong> in the Foxy admin.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Always test in report-only mode first — don’t enforce a CSP you haven’t verified.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Update your CSP whenever you add a new integration or script.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Review your violation logs periodically for suspicious activity.\u003C\u002Fp>\u003C\u002Fli>\u003C\u002Ful>\u003C\u002Fsection>",[617,620,622,625,627],{"id":618,"title":360,"level":619},"why-it-matters","H2",{"id":621,"title":395,"level":619},"steps",{"id":623,"title":401,"level":624},"step-1-test-in-report-only-mode","H3",{"id":626,"title":505,"level":624},"step-2-enforce-csp",{"id":628,"title":565,"level":619},"notes",[630],{"type":631,"content":632},"html","\u003Cp>A Content Security Policy (CSP) acts as a whitelist for your checkout page, controlling which external domains scripts, styles, fonts, and other resources are allowed to load from. You configure it in the \u003Ca href=\"https:\u002F\u002Fadmin.foxy.io\" class=\"\">Foxy admin\u003C\u002Fa>, under \u003Cstrong>Settings → Checkout\u003C\u002Fstrong>.\u003C\u002Fp>\u003Cp>If you haven’t customized your checkout with your own scripts or templates, you can likely enable CSP directly — but we still recommend testing first using the steps below.\u003C\u002Fp>\u003Ch2>Why it matters\u003C\u002Fh2>\u003Cp>Foxy’s checkout allows custom scripts for things like tracking or analytics, and each domain those scripts load from (and send data to) needs to be allow-listed in your CSP. For example, if you add a tracking script hosted at \u003Ccode class=\"badge bg-soft-danger text-danger\">js.example.com\u003C\u002Fcode> that sends data to \u003Ccode class=\"badge bg-soft-danger text-danger\">tracking.example.com\u003C\u002Fcode>, you’d add both domains to your CSP. If \u003Ccode class=\"badge bg-soft-danger text-danger\">example.com\u003C\u002Fcode> were later compromised and an attacker tried to send your customers’ data to \u003Ccode class=\"badge bg-soft-danger text-danger\">hacker.evil.tld\u003C\u002Fcode>, the CSP would block that request. A CSP doesn’t prevent a compromise from happening, but it can significantly limit the damage — and it can also help support PCI compliance.\u003C\u002Fp>\u003Ch2>Steps\u003C\u002Fh2>\u003Ch3>Step 1: Test in report-only mode\u003C\u002Fh3>\u003Cp>Report-only mode logs policy violations without blocking anything, so you can confirm your policy is correct before it can break your checkout.\u003C\u002Fp>\u003Col order=\"1\">\u003Cli>\u003Cp>In the \u003Ca href=\"https:\u002F\u002Fadmin.foxy.io\" class=\"\">Foxy admin\u003C\u002Fa>, go to \u003Cstrong>Settings → Checkout\u003C\u002Fstrong>.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Turn on \u003Cstrong>Enable Report-Only CSP\u003C\u002Fstrong>.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Set a \u003Cstrong>Reporting URL\u003C\u002Fstrong> — this is where violation logs are sent, and it must be a valid URL. You can use a free service like Pipedream or Webhook.site to receive these reports, or any endpoint you control that can accept a request and log it somewhere (email, a log file, a Slack channel). \u003Ca href=\"https:\u002F\u002Ffoxy.io\u002Fcontact\u002F\" class=\"\">Contact us\u003C\u002Fa> if you’d like help — we may have an as-yet-undocumented option available.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Under \u003Cstrong>Custom script sources\u003C\u002Fstrong>, add the domains hosting the scripts and styles you use (e.g., \u003Ccode class=\"badge bg-soft-danger text-danger\">example.com\u003C\u002Fcode>, \u003Ccode class=\"badge bg-soft-danger text-danger\">*.example.com\u003C\u002Fcode>).\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Test all of your checkout flows — guest and logged-in customers, payments, and coupons.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Check your reporting URL for unexpected violations, such as domains you forgot to add.\u003C\u002Fp>\u003C\u002Fli>\u003C\u002Fol>\u003Ch3>Step 2: Enforce CSP\u003C\u002Fh3>\u003Cp>Once you’ve tested in report-only mode and confirmed there are no unexpected violations, copy the same settings over to the non-report-only CSP to start enforcing it.\u003C\u002Fp>\u003Col order=\"1\">\u003Cli>\u003Cp>In the \u003Ca href=\"https:\u002F\u002Fadmin.foxy.io\" class=\"\">Foxy admin\u003C\u002Fa>, go to \u003Cstrong>Settings → Checkout\u003C\u002Fstrong>.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Apply the same domains you tested in report-only mode to the enforced CSP settings.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Continue monitoring your reporting endpoint after enforcing.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Confirm your checkout still functions as expected, including any custom JavaScript (analytics, UI changes, etc.).\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>\u003Ca href=\"https:\u002F\u002Ffoxy.io\u002Fcontact\u002F\" class=\"\">Contact us\u003C\u002Fa> if you run into any issues.\u003C\u002Fp>\u003C\u002Fli>\u003C\u002Fol>\u003Ch2>Notes\u003C\u002Fh2>\u003Cul>\u003Cli>\u003Cp>If your checkout breaks after enabling CSP, check your reporting endpoint for the blocked domain, then add it to \u003Cstrong>Custom script sources\u003C\u002Fstrong> in the Foxy admin.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Always test in report-only mode first — don’t enforce a CSP you haven’t verified.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Update your CSP whenever you add a new integration or script.\u003C\u002Fp>\u003C\u002Fli>\u003Cli>\u003Cp>Review your violation logs periodically for suspicious activity.\u003C\u002Fp>\u003C\u002Fli>\u003C\u002Ful>",{"name":634,"created_at":635,"published_at":636,"updated_at":637,"id":638,"uuid":47,"content":639,"slug":48,"full_slug":48,"sort_by_date":59,"position":817,"tag_list":818,"is_startpage":24,"parent_id":59,"meta_data":59,"group_id":819,"first_published_at":820,"release_id":59,"lang":65,"path":59,"alternates":821,"default_full_slug":59,"translated_slugs":59},"Contact","2022-09-23T19:56:58.957Z","2025-05-08T18:24:40.382Z","2025-05-08T18:24:40.392Z",3138,{"seo":640,"_uid":643,"title":644,"action":645,"fields":646,"method":793,"columns":794,"subtitle":808,"component":48,"button_text":814,"submit_title":815,"submit_subtitle":816},{"_uid":641,"title":634,"plugin":642,"description":13},"24ff7574-3bcc-48d2-85b5-e529dfea1cc4","meta-fields","8f54f1da-9d8f-49b2-89e7-840e886491cb","We're here to help.","https:\u002F\u002Fusebasin.com\u002Ff\u002F029f48d65402",[647,652,656,764,767,772,787],{"_uid":648,"name":649,"type":332,"label":650,"options":13,"required":33,"component":651,"placeholder":13},"9a70b226-2036-4f90-a052-b3efa61c5896","name","Name","form___field",{"_uid":653,"name":654,"type":654,"label":655,"options":13,"required":33,"component":651,"placeholder":13},"86ba35be-ff43-4a28-8633-14052a8f6622","email","Email Address",{"_uid":657,"name":658,"type":659,"label":660,"options":661,"required":33,"component":651,"conditions":662,"placeholder":13},"3f827475-492c-4f97-aa1e-2386ac263b6c","topic","select","Topic","Presales, Support, Billing, Partnerships, Order Enquiry, Other",[663,718,728,735,743,751,757],{"_uid":664,"equals":665,"fields":666,"component":717},"e21d97dd-e68e-4fa6-ba97-bc40f3041dde","Order Enquiry",[667],{"_uid":668,"body":669,"type":715,"title":13,"component":716},"b64992bc-6d53-48b8-b7a0-d81e5a062e50",{"type":324,"content":670},[671],{"type":327,"content":672},[673,675,682,684,686,687,691,693,698,706,708,713],{"text":674,"type":332},"We are ",{"text":676,"type":332,"marks":677},"Foxy.io",[678],{"type":337,"attrs":679},{"href":680,"uuid":59,"anchor":59,"custom":681,"target":59,"linktype":31},"http:\u002F\u002FFoxy.io",{},{"text":683,"type":332},", an ecommerce platform powering ecommerce for other merchants. We do not sell products, and are unable to assist with questions about order statuses or refunds for any merchants using our platform. Please contact the merchant you ordered from for assistance. If you’d like to report a store using Foxy for fraudulent practices, please select ‘other’ in the subject.",{"type":685},"hard_break",{"type":685},{"text":688,"type":332,"marks":689},"NOTE:",[690],{"type":346},{"text":692,"type":332}," We are ",{"text":694,"type":332,"marks":695},"not ",[696],{"type":697},"italic",{"text":699,"type":332,"marks":700},"Foxy.in",[701,705],{"type":337,"attrs":702},{"href":703,"uuid":59,"anchor":59,"custom":704,"target":59,"linktype":31},"http:\u002F\u002FFoxy.in",{},{"type":697},{"text":707,"type":332},". We are not in any way affiliated with ",{"text":699,"type":332,"marks":709},[710],{"type":337,"attrs":711},{"href":703,"uuid":59,"anchor":59,"custom":712,"target":59,"linktype":31},{},{"text":714,"type":332},", and cannot help in any way with your order from that website.","danger","global___alert","form___condition",{"_uid":719,"equals":720,"fields":721,"component":717},"8765c3e1-25cf-44aa-b8ea-fc6094acf9c3","Presales",[722],{"_uid":723,"name":724,"type":725,"label":13,"options":13,"required":24,"component":651,"conditions":726,"placeholder":13,"default_value":727},"cf464f8e-d643-4f6e-af29-d3abffaf7380","department_email_address","hidden",[],"hello@foxy.io",{"_uid":729,"equals":208,"fields":730,"component":717},"4007b6d8-77e5-421d-bd1e-6f336dd853fb",[731],{"_uid":732,"name":724,"type":725,"label":13,"options":13,"required":24,"component":651,"conditions":733,"placeholder":13,"default_value":734},"7b4c6aa5-a68c-45e0-9ce1-0a36af10c0c2",[],"help@foxy.io",{"_uid":736,"equals":737,"fields":738,"component":717},"1dbb8f11-613d-43cd-9e09-1b94f6e19219","Billing",[739],{"_uid":740,"name":724,"type":725,"label":13,"options":13,"required":24,"component":651,"conditions":741,"placeholder":13,"default_value":742},"a0ac0d1b-bc4f-4a6c-a682-581d450b0b73",[],"help+billing@foxy.io",{"_uid":744,"equals":745,"fields":746,"component":717},"a0a53a50-7172-4a29-ba58-181e38874e12","Partnerships",[747],{"_uid":748,"name":724,"type":725,"label":13,"options":13,"required":24,"component":651,"conditions":749,"placeholder":13,"default_value":750},"7aa011d9-f374-4aed-b5a5-929b54aaf152",[],"partners@foxy.io",{"_uid":752,"equals":665,"fields":753,"component":717},"a4cd431f-25d5-41c7-bfdc-02c908c8fb47",[754],{"_uid":755,"name":724,"type":725,"label":13,"options":13,"required":24,"component":651,"conditions":756,"placeholder":13,"default_value":727},"f5d52168-d6ae-451b-94ee-2ced1cbd28ad",[],{"_uid":758,"equals":759,"fields":760,"component":717},"25aba1ed-eb41-4bbc-aa89-f7a7167ea86e","Other",[761],{"_uid":762,"name":724,"type":725,"label":13,"options":13,"required":24,"component":651,"conditions":763,"placeholder":13,"default_value":727},"f40dfaef-c203-4b71-bf4e-e1b43cef192b",[],{"_uid":765,"component":766},"e9c53a05-f40a-4510-aaf8-bc072a235a0c","form___subject",{"_uid":768,"name":769,"type":770,"label":771,"options":13,"required":33,"component":651,"placeholder":13},"a4c4d385-fff4-4978-99fb-b68cfea623d6","message","textarea","Message",{"_uid":773,"name":774,"type":659,"label":775,"options":776,"required":33,"component":651,"conditions":777,"placeholder":13},"8a3c9f85-f438-427d-9c7a-d7b295a14b5b","existing_user","Are you an existing user?","No, Yes",[778],{"_uid":779,"equals":780,"fields":781,"component":717},"115933d6-262a-4b59-8fa8-579c5ad73de1","Yes",[782],{"_uid":783,"name":784,"type":332,"label":785,"options":13,"required":33,"component":651,"conditions":786,"placeholder":13},"44b6ff23-98f0-4e95-b7f5-c23e06415c2d","subdomain","Store Subdomain",[],{"_uid":788,"name":789,"type":659,"label":790,"options":791,"required":33,"component":651,"conditions":792,"placeholder":13},"922a5cef-3af2-4113-8855-36c7910e3ee3","user_type","What type of user are you?","Developer, Designer, Merchant",[],"POST",[795],{"_uid":796,"text":797,"title":806,"component":807},"7323b90d-a93a-4bf1-baa9-20d0b7ead61b",{"type":324,"content":798},[799],{"type":327,"content":800},[801,803,804],{"text":802,"type":332},"855.369.9227",{"type":685},{"text":805,"type":332},"9:30am-6pm Central M-F","Pre-sales, Sales, & Partnerships","contact___footer_column",{"type":324,"content":809},[810],{"type":327,"content":811},[812],{"text":813,"type":332},"Get in touch to get help from our friendly support team.","Submit","Success!","Your email has been received. We'll get back to you as soon as we can, but it might take a business day. If you don't hear back from us in a timely manner, please check your spam folder to ensure our reply didn't go there.",-80,[],"2fd9fb7d-a48a-4184-acfd-30022d8d6f08","2022-09-23T20:10:45.360Z",[],[288,823],{"name":824,"created_at":825,"published_at":826,"updated_at":827,"id":828,"uuid":605,"content":829,"slug":844,"full_slug":845,"sort_by_date":59,"position":846,"tag_list":847,"is_startpage":24,"parent_id":310,"meta_data":59,"group_id":848,"first_published_at":849,"release_id":59,"lang":65,"path":59,"alternates":850,"default_full_slug":59,"translated_slugs":59},"Security & Policies","2023-01-19T16:27:35.000Z","2026-07-16T04:20:56.886Z","2026-07-16T04:20:56.901Z",28244,{"_uid":830,"icon":831,"name":824,"type":832,"guides":833,"pinned":24,"summary":834,"category":13,"component":297,"blog_posts":835,"content_hub":24,"icon_custom":836,"case_studies":837,"faq_sections":838,"help_articles":839,"featured_guides":840,"mailbox_category":13,"featured_articles":841,"featured_blog_posts":842,"featured_case_studies":843},"e9746086-08b8-4b9e-afb3-5264fdca1ea1","fa-lock-alt","simple",[],"Security information and resources for keeping you and your customers safe.",[],{"id":59,"alt":59,"name":13,"focus":59,"title":59,"filename":13,"copyright":59,"fieldtype":81},[],[],[],[],[],[],[],"security-and-policies","help\u002Fcategories\u002Fsecurity-and-policies",100,[],"e8afb525-b6de-4134-9bf9-63989d71a318","2023-01-19T17:25:33.172Z",[],{},1784176460337]