• Personally, I think it's funny that all sites I know (including all large sites) show a "This site uses cookie. Accept or leave immediately" banner, but

    1. they don't explain what the cookies do and why. "This site requires cookies to work" is surely not a clear and comprehensive explanation, and
    2. most sites show this warning after cookies have been set (because it's technically much easier).

    So these sites annoy their users and miss the goals of the directive (i.e. they're – in my humble opinion – not fulfilling the legal requirements), and so top even the "lawmakers who couldn't use a mouse". :)

  • GNU/Linux Admin

    Are we just not allowed to store any cookie in any form containing any data without consent?

    Because if so, NodeBB won't fly, because even just landing on any page, you will get a single cookie with express.sid value.

    I've wanted to remove this for a long time (about a year now? When did @miksago last post...), because a forum with lots of anons will clutter the db with useless sess:* entries, which stay active for 14 days.

    Easier said than done actually... need to rewrite how we save cookie data (that is... don't save any cookie data until a login session is started)...

  • Anime Lovers

    It's not just any cookie.

    However, some cookies are exempt from this requirement. Consent is not required if the cookie is:
    used for the sole purpose of carrying out the transmission of a communication, and
    strictly necessary in order for the provider of an information society service explicitly required by the user to provide that service.
    Cookies clearly exempt from consent according to the EU advisory body on data protection- WP29pdf include:
    user‑input cookies (session-id) such as first‑party cookies to keep track of the user's input when filling online forms, shopping carts, etc., for the duration of a session or persistent cookies limited to a few hours in some cases
    authentication cookies, to identify the user once he has logged in, for the duration of a session
    user‑centric security cookies, used to detect authentication abuses, for a limited persistent duration
    multimedia content player cookies, used to store technical data to play back video or audio content, for the duration of a session
    load‑balancing cookies, for the duration of session
    user‑interface customisation cookies such as language or font preferences, for the duration of a session (or slightly longer)
    third‑party social plug‑in content‑sharing cookies, for logged‑in members of a social network.


  • @julian said:

    Are we just not allowed to store any cookie in any form containing any data without consent?

    Because if so, NodeBB won't fly, because even just landing on any page, you will get a single cookie with express.sid value.

    I've wanted to remove this for a long time (about a year now? When did @miksago last post...), because a forum with lots of anons will clutter the db with useless sess:* entries, which stay active for 14 days.

    Easier said than done actually... need to rewrite how we save cookie data (that is... don't save any cookie data until a login session is started)...

    They allow some cookies because they can't think of an alternative method. Says it all about the EU cookie law. "You can't have cookies, except some."

    :)


  • @julian said:

    because a forum with lots of anons will clutter the db with useless sess:* entries, which stay active for 14 days.

    Is that 14 days fixed by redis, or can it be configurable?

  • GNU/Linux Admin

    Can be configured in the ACP, but 14 days is the default.

  • Admin

    cookies


  • I don't know how many elements I have blocked for this "Do you accept cookies" nonsense... If I didn't want there damn cookies on my pc because; "OH MYY. There Vurises" I won't bother with going online at all >.>


  • If I was asked to do a website for a business, i'd include it - it's legislation, and would be expected.

    But as for my own site (which isn't a business and I fund 100% myself), I point-blank refuse to comply.

    It would probably make a nice little plugin for someone to make though.


  • @Danny-McWilliams
    @a_5mith said:

    Why does this need to be a plugin? Throw this code into a header widget and "furget abawt it".

    <script type="text/javascript">
        window.cookieconsent_options = {"message":"This website uses cookies to ensure you get the best experience on our website","dismiss":"Got it!","learnMore":"More info","link":"http://example.com/cookie-policy","theme":"dark-top"};
    </script>
    
    <script type="text/javascript" src="//s3.amazonaws.com/cc.silktide.com/cookieconsent.latest.min.js"></script>
    

    Hints: Replace dark-top with any of the following:

    • dark-floating
    • dark-bottom
    • light-top
    • light-bottom
    • light-floating

    Floating will float it in from the bottom right corner. Bottom sets it at the bottom just above urgh "the fold"
    Problem solved.

  • Community Rep

    @Fastidious said:

    I see no issues with the "European Cookie Bullshit" (I am from Europe, but as American as Lincoln now). It is intended to protect the user (any other hidden and ulterior purpose notwithstanding). It takes a second to make the notice disappear. More often than not, I simply ignore it and continue using the site as I was.

    I'm an American living in Europe and it is definitely BS. It protects no one but just causes the web experience in Europe to be inferior to that elsewhere. It actually puts Europeans at more risk, not less, by creating a false sense of security.

    Security through annoyance is never security. This is a trick on the people, not an attempt to protect them.

  • Community Rep

    @prog said:

    @a_5mith I don't use it on forum, but some other sites.

    All larger forums and blogs use Adsense or ads in general. If you have some heavy used website, which generates user experience from content, then you have to invest much time to this website. This is the time which you could invest in your job or family, so for me it is OK to monetize.

    We are pretty large and, at the moment at least, don't have any ads.

  • Community Rep

    @drew said:

    As this is an EU only issue and NodeBB is in the US, should this be a plugin request?

    Not in the US ;)

  • GNU/Linux Admin

    @scottalanmiller said:

    @drew said:

    As this is an EU only issue and NodeBB is in the US, should this be a plugin request?

    Not in the US ;)

    Yes, sorry, we are not in the US, sorry, we are in Canada. Sorry again. moose moose maple syrup, mounties.

  • Admin

    Sorry, let me hold that door for you on your way out julian, sorry. Bacon bacon


  • Being from the UK, you're all just rowdy colonies to me ;)

  • Admin

    Ah a UK person, @a_5mith being the other prominent member on this site from there. I hope unlike him you're a real British person and follow football

    And your team better not be arsenal :rage1:

  • GNU/Linux Admin

    @drew Canadian colony is best colony.


  • @psychobunny I hope you're not a Tottenham Hotspur fan?

  • Admin

    I am. And you've just been banned.

Suggested Topics

  • 11
  • 1
  • 132
  • 6
  • 3
| |