Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

PB blocks zenodo DOI badges #2393

Open
Bisaloo opened this issue Jun 17, 2019 · 3 comments
Open

PB blocks zenodo DOI badges #2393

Bisaloo opened this issue Jun 17, 2019 · 3 comments
Labels
broken site DNT policy EFF's Do Not Track policy: www.eff.org/dnt-policy

Comments

@Bisaloo
Copy link
Contributor

Bisaloo commented Jun 17, 2019
edited
Loading

What is your browser and browser version?

Firefox 67.0.2 (tested on a fresh profile with only PB installed)

What is broken and where?

Zenodo DOI badges are blocked on multiple pages

What is the "culprit" domain?

zenodo.org

What is your debug output for this domain?

**** ACTION_MAP for zenodo.org
zenodo.org {
  "userAction": "",
  "dnt": false,
  "heuristicAction": "block",
  "nextUpdateTime": 1561118203694
}
**** SNITCH_MAP for zenodo.org
zenodo.org [
  "r-project.org",
  "rstudio.org",
  "curtin.edu.au"
]

Steps to reproduce

Visit:

(three mirrors of the same page)

I don't know whether zenodo.org should be added to the yellow list or if it would be worth contacting them to see if they would agree to comply with the EFF DNT policy.

https://about.zenodo.org/privacy-policy/
@ghostwords
Copy link
Member

Thanks for the report! No other reports at this time.
@Bisaloo
Copy link
Contributor Author

Bisaloo commented Jun 19, 2019

@ghostwords, is there anything I can do on my end for this kind of issues? Like reaching out to the organisation owning the website or something?
@ghostwords ghostwords added the DNT policy EFF's Do Not Track policy: www.eff.org/dnt-policy label Jun 19, 2019
@ghostwords
Copy link
Member

ghostwords commented Jun 19, 2019
edited
Loading

Yeah, if you'd like, that would be really nice of you. You could point them to this issue so that we could continue the discussion here.

What's happening here (I think) is that Zenodo sets some sort of session cookie when serving the badge image. That's probably an oversight on their part, but maybe not. They could stop serving cookies for badge requests, which will resolve the issue going forward (for Badgers that haven't yet learned to block zenodo.org).

If the badges do not actually track users, Zenodo could also post the EFF Do Not Track policy on the domain that serves the badges. This will tell Privacy Badgers to always allow the badges to load. The tricky thing is that the policy applies to the domain it is posted on, not just any one particular use of the domain, so all of zenodo.org has to be compliant. As in, you can't post the policy if your badges do not track, but some other third-party thing you serve from zenodo.org does track.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
broken site DNT policy EFF's Do Not Track policy: www.eff.org/dnt-policy
2 participants
@ghostwords @Bisaloo