Privacy-enhanced mode for YouTube embed (D7)

Change on line 111 in file video_embed_field.handlers.inc src="http://www.youtube.com/embed/ to src="http://www.youtube-nocookie.com/embed/.

subscribe
... important setting in EU; I have to overwrite the 'function' handler for youtube at the moment:

function MYMODULE_video_embed_handler_info_alter(&$info) {
  // Change the render function for 'youtube' provider.
  if (isset($info['youtube'])) {
    $info['youtube']['function'] = 'MYMODULE_handle_youtube_alter';
  }
}

/**
 * Altered Handler for Youtube videos. (privacy: no cookie usage)
 * @see video_embed_field_handle_youtube()
 */
function MYMODULE_handle_youtube_alter($url, $settings) {
  ...
  // Construct the embed code.
  $settings['wmode'] = 'opaque';
  $settings_str = _video_embed_code_get_settings_str($settings);

  // OLD $output['#markup'] = '<iframe width="' . check_plain($settings['width']) . '" height="' . check_plain($settings['height']) . '" src="//www.youtube.com/embed/' . $id . '?' . $settings_str . '" frameborder="0" allowfullscreen></iframe>';

  $output['#markup'] = '<iframe width="' . check_plain($settings['width']) . '" height="' . check_plain($settings['height']) . '" src="//www.youtube-nocookie.com/embed/' . $id . '?' . $settings_str . '" frameborder="0" allowfullscreen></iframe>';

  return $output;
}

Very important issue for new Cookie law in EU

subscribe

I've added a patch that adds a checkbox that allows people to enable no cookie per video style (example on /admin/config/media/vef/vef_video_styles/list/normal/edit). By default this isn't enabled so there is no functionality change.

@nmillin Thanks for your work, I do appreciate that. Unfortunately it doesn't help against the DoubleClick tracker script but that's Youtube's fault.

#5 work for me.

#5 works for me, too.
But additionally i added the domain 'youtube-nocookie.com' to the allowed domains in line 28 of video_embed_field.handlers.inc :

function video_embed_field_video_embed_handler_info() {
  $handlers = array();

  $handlers['youtube'] = array(
    'title' => 'Youtube',
    'function' => 'video_embed_field_handle_youtube',
    'thumbnail_function' => 'video_embed_field_handle_youtube_thumbnail',
    'thumbnail_default' => drupal_get_path('module', 'video_embed_field') . '/img/youtube.jpg',
    'data_function' => 'video_embed_field_handle_youtube_data',
    'form' => 'video_embed_field_handler_youtube_form',
    'form_validate' => 'video_embed_field_handler_youtube_form_validate',
    'domains' => array(
      'youtube.com',
      'youtu.be',
+      'youtube-nocookie.com',
    ),

To become GDPR compliant we have to deal with the problem that the user IP gets transmitted as soon as a page with an embedded video is loaded, plus data from fonts.gstatic.com and ytimg.com is acquired. A better solution could be what I suggested here:

https://www.drupal.org/project/video_embed_field/issues/2973246#comment-...

I'm not capable to work on this task, though.

We need a rerolled patch from #8

New patch should be against DEV. To sum up: This is the Drupal 7 issue while the Drupal 8 issue can be found here: #2973246: Youtube Privacy Enhanced Mode (using -nocookie.com) (D8)

Rerolling patch to include #8

https://www.drupal.org/project/video_embed_field/issues/2016901#comment-... Works on Drupal 7.56

Actually, even if I type in the URL starting with www.youtube-nocookie.com, the URL that is actually written out in the HTML source becomes www.youtube.com Am I the only one having this issue? If not, this issue is not solved.

@zhouhana: looks like it, seems to do the trick here.

For those who prefer a Two-Click solution may want to have a look at https://www.drupal.org/project/video_embed_mytube

I'd like to see many helping hands, but it already works basically.