Our widgets include a number of URLs that navigate the user to our website. However, every time users click on these links, a warning message pops up asking users to verify the URLs are safe. Needless to say this is unnecessary friction for users.
I notice the warning is not shown for apps like Booking .com, Uber etc. What is needed from app developers to so that OpenAI can verify the links used in the apps?
Hi,
Please have a look at Reference – Apps SDK | OpenAI Developers, under _meta["openai/widgetCSP"] for redirect_domains (emphasis mine):
ChatGPT also supports the legacy
_meta["openai/widgetCSP"]compatibility key with snake_case field names:
connect_domains:string[]
resource_domains:string[]
frame_domains?:string[]
redirect_domains?:string[]. ChatGPT extension forwindow.openai.openExternalredirect targets.
It’s not just you, I think this is unclear. I’m updating the docs to make it clearer that this is the recommended approach.
Docs should be updated. Please let us know if you still find it confusing!
@cas thank you so much. A follow up question - once the widgetCSP fields are added, is there any refresh needed? My app is still showing the warning messages after adding WidgetCSP field. In cases where app already exists, how will ChatGPT get the new CSP ?
You’ll need to submit a new version.