Add and Verify the TrustedForm script in a form

The TrustedForm script generates a new Certificate of Authenticity for each visit to a page hosting a lead generation form. We have carefully engineered our script to load extremely quickly. Adding the script to your web forms is simple and quick. The usage of this script is governed by our TrustedForm End User License Agreement.

After adding the script to your HTML page, a unique TrustedForm Certificate URL will be passed along with all the other lead data that is being collected on the form. The TrustedForm script does this by adding a hidden field in your web form and inserting the URL into that field. The field is captured by the server when your form is submitted and passed along to the final lead recipient as proof that the lead was collected on your site.

Add the TrustedForm script to the page hosting your form

The TrustedForm script must be inserted into the HTML of the page that is submitting leads. We recommend it be inserted inline at the end of the document, just before the closing </body> tag. 

NOTE If your form loads inside an iframe, the TrustedForm script must also be inside the iframe. In this scenario, you don't need the TrustedForm script in the main body of the page, just in the iframe.


You can retrieve the TrustedForm script by registering here.


By default, the TrustedForm script will automatically add the field xxTrustedFormCertUrl to your form.

The field variable in theTrustedForm script can be changed to customize the name of the field inserted into your form.

e.g. var field = 'TrustedFormCertUrl';

You can also use the script callback to perform additional customization after the Certificate URL has been generated.

Explicitly providing your page's referrer

If you would like TrustedForm to collect your page's referrer (sometimes called the referer URL), you may set the var provideReferrer=true in the above script snippet instead of var provideReferrer=false.

Verify that the script has been implemented properly

Load the HTML page using Firefox, Chrome, or Safari and view the form using the DOM inspector (right click and Inspect).

Search for the field xxTrustedFormCertUrl in your form. If you find it, you have successfully set up the client-side portion of the TrustedForm integration.

NOTE View Source doesn't work in most browsers to verify the field has been added. You must inspect the source as described above. See the example below of where to find what you're looking for.


Set up the server-side integration

The xxTrustedFormCertUrl field must be passed all the way to the final recipient of the lead. So it is critical that the server that is receiving your form post captures the field along with the rest of the form data.

If you are posting directly to a LeadConduit account, there is no need to add the xxTrustedFormCertUrl field to the LeadConduit campaign. LeadConduit will automatically capture this field as one of the system fields.

If you are capturing the lead data in your database or lead management system before delivering it, you will need to add the xxTrustedFormCertUrl field so that you can capture the TrustedForm Certificate URL.

Verify the Certificate URL is passed properly

Once you think you have everything set up, check with the party receiving your leads. Are they receiving the Certificate URL value along with their lead data? If not, make sure the server is capturing the field. If the offer is brokered, then the broker must also pass along the Certificate URL to the recipient. If the recipient is receiving the Certificate URL, then the implementation of TrustedForm is complete.

A Note about Sandbox Mode

Historically, TrustedForm Certificates have been viewable during the initial 72 hour claiming period by any party with access to the TrustedForm Certificate URL. As of Wednesday, July 15, 2020, TrustedForm certificates will only be visible to customers who have claimed the certificate.

Because certificates are now only visible to customers who have claimed them, we created "sandbox mode" to allow publishers to test that certificates are being generated correctly, before pushing a web form live. View our support article on how to implement and use sandbox mode. 




Was this article helpful?
4 out of 6 found this helpful
Have more questions? Submit a request


You must be logged in to comment.