Get started with the Zoom Virtual Agent SDK for web

The ZVA SDK for web lets you engage with the chatbot and support agents directly without leaving your site.

Requirements

To add the chat client, you must have a:

• Published bot to get the code to add the client to your page.
• Zoom Virtual Agent license, and a Campaign or entry ID to start a chat flow.
• Content Security Policy header to add to your web server.

Content Security Policy header

If you're using Content Security Policy (CSP) on your browsers and want to use any Zoom SDK for the web, you must configure your web server to return the CSP header. You can use the nginx add_header directive in this example.

add_header 'Content-Security-Policy' "base-uri 'self'; default-src 'self'; worker-src blob:;style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' http://zoom.us *.zoom.us blob:; img-src 'self' *.zoom.us data:;; media-src 'self' .zoom.us; font-src 'self' source.zoom.us data:; connect-src 'self' 'unsafe-eval' https://*.zoom.us wss://.zoom.us;";

You'll need to add the nginx header if you see an error in the browser code that is similar to this example.

CompileError: WebAssembly.instantiate(): Refused to compile or instantiate WebAssembly module because 'unsafe-eval' is not an allowed source of script in the following Content Security Policy directive: "script-src 'self' 'strict-dynamic' 'nonce-LxlpktY6Sou9E-ZC46OlZA' blob: https: 'unsafe-inline'" at 3afbd0c1-54af-4f01-9d3f-8ffb8dcb31cf:1:22144

For more information on CSP, see the Mozilla, web.dev, or W3C documentation.