Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Filter session ID from URL #519

Closed
robocoder opened this issue Jan 24, 2009 · 2 comments
Closed

Filter session ID from URL #519

robocoder opened this issue Jan 24, 2009 · 2 comments
Labels
Bug For errors / faults / flaws / inconsistencies etc. duplicate For issues that already existed in our issue tracker and were reported previously. Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical.
Milestone
0.9.9

Comments

@robocoder
Copy link
Contributor

This issue was raised by collection23 on the forum.

  1. http://forum.piwik.org/index.php?showtopic=161

Many dynamic generated Websites are using session-IDs to track users. In this case a URL kooks like: domain.tld/site1.html?SID=12345678. But the SID is different for each visitor.

In actions/pages PIWIK shows ten lines with the same page (domain.tld/site1.html) with ten different session IDs. It would be a great feature if there were an option to eliminate everything in the URL starting at a userdefined character string like “?SID=”.

Result should be on line with a 10 times visited URL.
@robocoder
Copy link
Contributor Author

There is currently no way for the Piwik server to know what the tracking site uses as a session ID name for cookieless sessions. For example, the default for PHP applications is PHPSESSID (configured in php.ini), but can be arbitrarily set by calling session_name().

The session ID could appear in either the action page or the referrer.

A closely related issue to consider is user authentication information in the URL, as in http://user:password@host/path, which should likewise be filtered.
1. We can introduce a method in OO piwik.js that allows the application to specify the session ID used. Examples:
– Piwik.setSessionIDFilter( Piwik.SID.ASP ); // (…), s(…), (S(…)), or (s({…}))
– Piwik.setSessionIDFilter( Piwik.SID.Apache ); // SESSIONID=….
– Piwik.setSessionIDFilter( Piwik.SID.ColdFusion ); // CFID=…&CFTOKEN=…
– Piwik.setSessionIDFilter( Piwik.SID.Java ); // jsessionid=…
– Piwik.setSessionIDFilter( Piwik.SID.PHP ); // PHPSESSID=…
– Piwik.setSessionIDFilter( "sessionID ); // arbitrary sessionID=…
2. We later apply the filter to the action page (and the referrer URL if it originates from the same host).

@mattab
Copy link
Member

mattab commented Jan 29, 2009

dup of #41, ticket #41 updated with your suggestions, and priority increased: this should make it to piwik 1.0

@robocoder robocoder added this to the Piwik 0.9.9 - Stable release milestone Jul 8, 2014
This was referenced Sep 3, 2010
Closed
Closed
This issue was closed.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Bug For errors / faults / flaws / inconsistencies etc. duplicate For issues that already existed in our issue tracker and were reported previously. Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical.
Projects
None yet
Milestone
0.9.9
Development

No branches or pull requests
2 participants
@mattab @robocoder