Iframe support (CSP)

Allow embedding External Share links in iframes by setting custom Content Security Policy

To set a custom Content Security Policy:

1. Go to External Share Global Settings.

2. Switch to the Others tab.

3. 

   Set allowed domains. You can set multiple domains by separating them with spaces.
   

   

   NOTE: "https://*.atlassian.net and https://*.external-share.com" are added automatically. You do not need to set them manually.

4. Save changes.

5. Content-Security-Policy header with passed domains will be added to every response with External Share content.