New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Enable DoNotTrack support by default - ignore visits with DNT or X-Do-Not-Track header #2048
Comments
Attachment: v0.3 of DoNotTrack plugin |
Hi, I'm curious if there are plans for putting this in the default piwik install? I'd like to turn it on for my site, but if it's coming in the main package soon, I'd rather wait for that. Any advice? |
Probably not going to be in 1.2. There are other privacy-related changes being discussed (eg #2094). |
Agreed with cl feedback, we could put this feature in the General Settings screen as a simple checkbox "Enable support for Do Not Track: if your visitors configure their browser and enable Do Not Track, Piwik will not track them as per their request" If DonotTrack keeps increasing its support, should we integrate this capability in Core in the existing Privacy menu in Piwik? |
There is some good progress on do not track, which is supported in IE and FF and opera, and will soon be supported in Chrome! I think we should consider moving this plugin into core, enabled by default, that users could disable from the Privacy tab if they wish to. I would be keen to do this before 2.0. Users who are not happy could disable it. But, in general, it would make the world a better place :) |
OK with moving to core but I would prefer disabled by default -- the reason being, a new user who has forgotten they have dnt enabled in their browser will report 0 visits. |
This is Dan from EFF -- we've been starting to use Piwik and experimenting with privacy settings.
|
Thanks, Dan. According to the TPE working draft, the Tk response header is optional. It's the TSR at /.well_known/dnt that's mandatory which may be a compliance issue given that piwik is often installed in a subdirectory of a website. Opera 12 and Safari follow the draft for the JavaScript API. IE uses a vendor prefix. Firefox diverges to use "yes", "no", and unspecified (even though they proposed DNT). |
We can consider enabling it by default. It has been suggested before and sounds like the right thing to do. we would have to move it to the Privacy plugin for consistency and add the UI in the existing Privacy tab.
What are your thoughts regarding "logging the request" with no information whatsoever? What information could be logged at all? For reference the logging tables are piwik_log_* for example http://qa.piwik.org:8080/schema/tables/canoo_log_visit.html |
(In [6201]) refs #2048 - add DoNotTrack plugin v0.3 |
(In [6202]) refs #2048 - update DoNotTrack plugin to conform to core plugin style; update DNT detection to only look at the 1st character per TPE working draft; enable by default in config |
Thanks vipsoft! Good to see this feature included in core now :) Review:
|
(In [6203]) refs #2048 - fix build (missing svn props) |
(In [6204]) refs #2048 - remove config setting; enabling/disabling DNT corresponds to activating/deactivating the plugin |
I think the current PrivacyManager plugin breaks the convention of a plugin doing one thing, and doing it well. I'm going to close for now, and open a new ticket for the Settings UX. |
Todo:
|
(In [6259]) refs #2048 - add TPE draft Tk header |
(In [6376]) Fixes #2048 Added Do Not Track preference under Privacy screen. Now will update doc and FAQs! |
Don't we want to avoid including token auth in urls? |
it's OK as long as the token_auth does not persist in the URL beyond the click itself |
I notice on my box that disabling/enabling the DoNotTrack plugin does not add it to the PluginsTracker section in config file! Not sure why... I think it used to work too, maybe a temp bug |
This plugin provides Piwik support for the DNT and X-Do-Not-Track headers, supported by FF4 and IE9.
Reference:
To install:
History:
Caveats:
The text was updated successfully, but these errors were encountered: