Problem/Motivation

Ghosetery blocks the generated script in public://eu_cookie_compliance. Not great as users who install Ghostery are more likely to be concerned about Cookie Compliance.

Steps to reproduce

Install Ghostery. Clear cache and cookies. Load page. Banner does not appear. Disable Ghostery, or in Ghostery set site to "Trusted". Banner appears.

Only tested on Firefox. Not tested with other script-blocking privacy plugins, other than DuckDuckGo Privacy Essentials, which does not block the script.
Not an issue on iOS Safari w/o plugins.

Proposed resolution

Remaining tasks

User interface changes

API changes

Data model changes

Comments

John_B created an issue. See original summary.

john_b’s picture

john_b commented
Title: Ghosetery blocks the generated script in public://eu_cookie_compliance » Ghostery blocks the generated script in public://eu_cookie_compliance
john_b’s picture

john_b commented
Issue summary: View changes
svenryen’s picture

svenryen commented
Related issues: +#3276798: Broken on Firefox with Ghostery
svenryen’s picture

svenryen commented
Status: Active » Postponed

This is narrowed down to Ghostery mistakenly flagging the script as an "Annoyance". I've contacted Ghostery Support, asking if it's possible to allowlist our scripts so that those who use Ghostery can consent to cookies.

svenryen’s picture

svenryen commented
Status: Postponed » Closed (won't fix)

I've received feedback from Ghostery.

They write that "Ghostery blocks third-party tracking/ads/content on sites to protect user privacy. Ghostery prefers to remain impartial on what third-party codes are blocked or allowed. This is why we give users full tracker blocker control within the Ghostery menu. Ghostery doesn’t selectively unblock any 3rd party scripts, regardless of its stated purpose."

"The adblocking feature is comprised of community adblocking lists that are used not only by Ghostery but other adblockers as well. It appears that this cookie banner's script has been added to a community list. We would recommend that if you would like to have it removed, reach out to the community lists on Github, for example, EasyList, and make your request there."

"To disable ad-blocking, please follow these instructions:
Click on the Ghostery icon > Click the middle icon (prohibition symbol) > refresh the page

"

I'm afraid that's where this issue stands. I'm not sure what can be done, but you're free to experiment with various changes to file names and see if that improves the situation. I'll mark this as Closed for now, but feel free to re-open.

john_b’s picture

john_b commented

With Ghostery (tested in Firefox) cookies are set then deleted after about 1 second. However, if the cookie domain is an exact match (no subsomain) the banner seems to work. The problem only arises where there is a subdomain, which in my use case is needed.

philipp-classen’s picture

philipp-classen commented

Some update (I'm part of the Ghostery engineering team): You are right that the annoyances lists, which we recently enabled by default in Ghostery, cause unintentional breakage in consent managers. We are working on improving that.

As one of the change, the eu_cookie_compliance.js script should be allowed now, which might also fix the issue described here. If not, feel free to open a ticket on https://github.com/ghostery/ghostery-extension/ with an example page where it fails.

john_b’s picture

john_b commented

Thanks, philipp-classen. That is good progress.

svenryen’s picture

svenryen commented

Great, thanks for helping!

@philipp-classen, we have now changed the name of the script to eu_cookie_compliance.min.js (just in case you need to update any settings with the new name). Both script names should be accepted, as the vast majority of sites don't update immediately and will keep on using the un-minified version.