NOVA_DATA_INDEX

Manage the knowledge base and indexed content for your agent.

Indexed Content

USAGE_BILLING

Monitor your API consumption and billing details.

Monthly Conversations

0 / 100,000 0%

Your free tier includes 100,000 conversations per month. Overage fees apply thereafter.

DEPLOYMENT_GUIDE

Configuration required to successfully deploy the AI Agent on your website.

Overview & Problem Statement

To function correctly, the AI Agent must execute its loader script and communicate with the backend AI service. Strict Content Security Policies (CSP) may block these actions, resulting in browser console errors such as:

Refused to connect to 'https://galaxa-nova.deno.dev/...' because it violates the following Content Security Policy directive: "connect-src 'self' ..." TypeError: response.json is not a function

Required Configuration Changes

To authorize the AI Agent, your engineering team needs to update the Content Security Policy (CSP) header on the web server or CDN (e.g., Akamai).

Directive	Purpose	Required Change
script-src	Allows the browser to load and execute the agent's `loader.js`.	Append `https://galaxa-nova.deno.dev`
connect-src	Allows the agent to fetch answers from the backend AI service.	Append `https://galaxa-nova.deno.dev`
frame-src	(Optional) If the agent uses an iframe for the chat UI.	Append `https://galaxa-nova.deno.dev`

Example Updated Header

Current header snippet (approximate):

content-security-policy: script-src 'self' https://cdnjs.cloudflare.com ...; connect-src 'self' https://cm.everesttech.net ...;

Proposed header snippet:

content-security-policy: script-src 'self' https://cdnjs.cloudflare.com https://galaxa-nova.deno.dev ...; connect-src 'self' https://cm.everesttech.net https://galaxa-nova.deno.dev ...;

Implementation Steps (DevOps/Akamai Admins)

Locate CSP Configuration: Access the Akamai Property Manager or the Nginx/Apache configuration for your domain.
Edit Policy: Find the Content-Security-Policy header definition.
Append Domain: Add https://galaxa-nova.deno.dev to the script-src and connect-src lists.
Verify:
- Purge cache (if applicable).
- Load the site and verify that the console error Refused to connect... is gone.
- Verify that the agent loader script executes and the chat window appears.

Security Note

Whitelisting https://galaxa-nova.deno.dev grants trust only to this specific domain. It does not open the site to wildcard access (*) or other untrusted parties. The agent communication remains fully encrypted via HTTPS.

Welcome Back

Reset Password

DASHBOARD_OVERVIEW

Welcome to Nova

Top Products Asked About

Conversation Volume

Recent Feedback

Peak Activity Hours (24h)

NOVA_DATA_INDEX

Indexed Content

USAGE_BILLING

Monthly Conversations

Overage Fees Applied

DEPLOYMENT_GUIDE

Overview & Problem Statement

Required Configuration Changes

Example Updated Header

Implementation Steps (DevOps/Akamai Admins)

Security Note

SETTINGS

Update Email

Change Password

CONTACT_SUPPORT