FinDock incident

Images and fonts are not rendered for some GivingPages

Minor Resolved View vendor source →

FinDock experienced a minor incident on January 27, 2025 affecting Giving pages, lasting 44m. The incident has been resolved; the full update timeline is below.

Started
Jan 27, 2025, 03:42 PM UTC
Resolved
Jan 27, 2025, 04:27 PM UTC
Duration
44m
Detected by Pingoru
Jan 27, 2025, 03:42 PM UTC

Affected components

Giving pages

Update timeline

  1. identified Jan 27, 2025, 03:42 PM UTC

    Some GivingPages are experiencing issues with images and fonts not rendering. Payment functionality remains unaffected, and the pages can still be used to complete transactions. FinDock has identified the issue and is working on a fix, which we intend to deploy tonight.

  2. resolved Jan 27, 2025, 04:27 PM UTC

    A fix has been implemented and all affected GivingPages are fully operational again.

  3. postmortem Jan 28, 2025, 09:57 AM UTC

    **Issue**: The January '25 release included an update to the Content Security Policy \(CSP\) FinDock uses on Heroku for Giving Pages content. This update introduced stricter content rules which blocked certain page content from rendering. **Solution**: The security update blocked content hosted on the Salesforce `*.documentforce.com` domain. We’ve now added this domain to the policy whitelist to allow the content on Giving Pages.