<aside> 🔗
Lost? Links to ATG websites below:
📚 Documentation (Home) • 🌐 Website • 🚀 Web App • ⚙️ Admin Console
</aside>
ATG Embedded runs inside an isolated iframe hosted on app.askthisguy.com, ensuring data privacy, robust security, and effortless updates. 🔒
| Mode | Typical Use Case | Authentication to scope the session | Requires Backend |
|---|---|---|---|
| Mode 1 - Public | Website FAQ, lead gen, simple SaaS help without per-user context | None | No |
| Mode 2 -Connected | Auth'd SaaS, contextual support, automations | Server-signed JWT with short TTL | ✅ Yes |
widget.js) 🧩A lightweight script that ATG provides and that you embed in your site.
It injects an iframe pointing to https://app.askthisguy.com, creates the chat launcher via Shadow DOM, and communicates with the iframe using postMessage.
All chat UI and data live inside a cross-origin iframe (app.askthisguy.com) under the browser's Same-Origin Policy:
Prevents CSS/JS collisions with your site.
To maintan the chat sessions with users, ATG ensures that the iframe holds a short-lived, DPoP-bound bearer token in memory and sends it as Authorization: DPoP \\<access\\> with the right header.
This mechanism allows to maintain a session on browser like Safari where 3rd party cookies and partitionned cookies would get blocked.