When leveraging Imagicle gadgets in Cisco Finesse or the Imagicle App for MS-teams, the UCX Suite can verify and allow the originating domain of each http/https request coming into own web server (IIS-based). This is accomplished by amending the default http/https Response Header, to make sure that source applications are recognized as safe.
It is required for accessing Imagicle web pages embedded in any third party application leveraging iFrame wrapping.
The external web domains or URLs to be trusted by Imagicle should be whitelisted in Imagicle web server by adding a Content-Security-Policy header from Windows IIS. Here is the procedure:
Couple of example:
Content-Security-Policy: frame-ancestors teams.microsoft.com *.teams.microsoft.com *.skype.com
Content-Security-Policy: frame-ancestors *.company.com my
uccx.company.com:8445
Please contact Imagicle Support to let them know what are the web domains or URLs to be trusted.