CSP for ADOA and LogRocket - FOUR-7388

[paulosakamoto]

Issue & Reproduction Steps

Adding CSP settings to work with ADOA, Logrocket and product-analytics

Solution

• Add the tags recommended in the logrocket documentation and those present in the adoa and product-analytics packages

How to Test

Open any page in PM. In the Network Tab, check the response header. Should be: Content-Security-Policy: connect-src *; script-src * 'unsafe-inline' 'unsafe-eval' blob:; object-src 'self' 'unsafe-inline' blob: data:; child-src 'self' blob:; worker-src 'self' blob:;

Related Tickets & Packages

• FOUR-7388

Code Review Checklist

• [ ] I have pulled this code locally and tested it on my instance, along with any associated packages.
• [ ] This code adheres to ProcessMaker Coding Guidelines.
• [ ] This code includes a unit test or an E2E test that tests its functionality, or is covered by an existing test.
• [ ] This solution fixes the bug reported in the original ticket.
• [ ] This solution does not alter the expected output of a component in a way that would break existing Processes.
• [ ] This solution does not implement any breaking changes that would invalidate documentation or cause existing Processes to fail.
• [ ] This solution has been tested with enterprise packages that rely on its functionality and does not introduce bugs in those packages.
• [ ] This code does not duplicate functionality that already exists in the framework or in ProcessMaker.
• [ ] This ticket conforms to the PRD associated with this part of ProcessMaker.