Skip to content
Extraits de code Groupes Projets
Valider 14e557bf rédigé par mattab's avatar mattab
Parcourir les fichiers

refs #6697 start refactoring the DoNotTrack code to allow for adding tests

parent a8917239
Aucune branche associée trouvée
Aucune étiquette associée trouvée
Aucune requête de fusion associée trouvée
Masquer les modifications d'espaces
En ligne Côte à côte
core/Piwik.php
+ 1
0
Voir le fichier @ 14e557bf
...@@ -468,6 +468,7 @@ class Piwik ...@@ -468,6 +468,7 @@ class Piwik
* in case another Login plugin is being used. * in case another Login plugin is being used.
* *
* @return string * @return string
* @api
*/ */
public static function getLoginPluginName() public static function getLoginPluginName()
{ {
......
core/Updates/2.0.3-b7.php
+ 3
1
Voir le fichier @ 14e557bf
...@@ -23,9 +23,11 @@ class Updates_2_0_3_b7 extends Updates ...@@ -23,9 +23,11 @@ class Updates_2_0_3_b7 extends Updates
$errors = array(); $errors = array();
try { try {
$checker = new DoNotTrackHeaderChecker();
// enable DoNotTrack check in PrivacyManager if DoNotTrack plugin was enabled // enable DoNotTrack check in PrivacyManager if DoNotTrack plugin was enabled
if (\Piwik\Plugin\Manager::getInstance()->isPluginActivated('DoNotTrack')) { if (\Piwik\Plugin\Manager::getInstance()->isPluginActivated('DoNotTrack')) {
DoNotTrackHeaderChecker::activate(); $checker->activate();
} }
// enable IP anonymization if AnonymizeIP plugin was enabled // enable IP anonymization if AnonymizeIP plugin was enabled
......
plugins/CoreAdminHome/Controller.php
+ 3
1
Voir le fichier @ 14e557bf
...@@ -22,6 +22,7 @@ use Piwik\Plugins\CorePluginsAdmin\UpdateCommunication; ...@@ -22,6 +22,7 @@ use Piwik\Plugins\CorePluginsAdmin\UpdateCommunication;
use Piwik\Plugins\CustomVariables\CustomVariables; use Piwik\Plugins\CustomVariables\CustomVariables;
use Piwik\Plugins\LanguagesManager\API as APILanguagesManager; use Piwik\Plugins\LanguagesManager\API as APILanguagesManager;
use Piwik\Plugins\LanguagesManager\LanguagesManager; use Piwik\Plugins\LanguagesManager\LanguagesManager;
use Piwik\Plugins\PrivacyManager\DoNotTrackHeaderChecker;
use Piwik\Plugins\SitesManager\API as APISitesManager; use Piwik\Plugins\SitesManager\API as APISitesManager;
use Piwik\Settings\Manager as SettingsManager; use Piwik\Settings\Manager as SettingsManager;
use Piwik\Site; use Piwik\Site;
...@@ -235,7 +236,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin ...@@ -235,7 +236,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin
// get currencies for each viewable site // get currencies for each viewable site
$view->currencySymbols = APISitesManager::getInstance()->getCurrencySymbols(); $view->currencySymbols = APISitesManager::getInstance()->getCurrencySymbols();
$view->serverSideDoNotTrackEnabled = \Piwik\Plugins\PrivacyManager\DoNotTrackHeaderChecker::isActive(); $dntChecker = new DoNotTrackHeaderChecker();
$view->serverSideDoNotTrackEnabled = $dntChecker->isActive();
return $view->render(); return $view->render();
} }
......
plugins/PrivacyManager/Controller.php
+ 6
3
Voir le fichier @ 14e557bf
...@@ -133,7 +133,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin ...@@ -133,7 +133,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin
if (Piwik::hasUserSuperUserAccess()) { if (Piwik::hasUserSuperUserAccess()) {
$view->deleteData = $this->getDeleteDataInfo(); $view->deleteData = $this->getDeleteDataInfo();
$view->anonymizeIP = $this->getAnonymizeIPInfo(); $view->anonymizeIP = $this->getAnonymizeIPInfo();
$view->dntSupport = DoNotTrackHeaderChecker::isActive(); $dntChecker = new DoNotTrackHeaderChecker();
$view->dntSupport = $dntChecker->isActive();
$view->canDeleteLogActions = Db::isLockPrivilegeGranted(); $view->canDeleteLogActions = Db::isLockPrivilegeGranted();
$view->dbUser = PiwikConfig::getInstance()->database['username']; $view->dbUser = PiwikConfig::getInstance()->database['username'];
$view->deactivateNonce = Nonce::getNonce(self::DEACTIVATE_DNT_NONCE); $view->deactivateNonce = Nonce::getNonce(self::DEACTIVATE_DNT_NONCE);
...@@ -297,7 +298,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin ...@@ -297,7 +298,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin
Piwik::checkUserHasSuperUserAccess(); Piwik::checkUserHasSuperUserAccess();
Nonce::checkNonce(self::DEACTIVATE_DNT_NONCE); Nonce::checkNonce(self::DEACTIVATE_DNT_NONCE);
DoNotTrackHeaderChecker::deactivate(); $dntChecker = new DoNotTrackHeaderChecker();
$dntChecker->deactivate();
$this->redirectToIndex('PrivacyManager', 'privacySettings'); $this->redirectToIndex('PrivacyManager', 'privacySettings');
} }
...@@ -307,7 +309,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin ...@@ -307,7 +309,8 @@ class Controller extends \Piwik\Plugin\ControllerAdmin
Piwik::checkUserHasSuperUserAccess(); Piwik::checkUserHasSuperUserAccess();
Nonce::checkNonce(self::ACTIVATE_DNT_NONCE); Nonce::checkNonce(self::ACTIVATE_DNT_NONCE);
DoNotTrackHeaderChecker::activate(); $dntChecker = new DoNotTrackHeaderChecker();
$dntChecker->activate();
$this->redirectToIndex('PrivacyManager', 'privacySettings'); $this->redirectToIndex('PrivacyManager', 'privacySettings');
} }
......
plugins/PrivacyManager/DoNotTrackHeaderChecker.php
+ 79
28
Voir le fichier @ 14e557bf
...@@ -18,9 +18,15 @@ use Piwik\Tracker\Request; ...@@ -18,9 +18,15 @@ use Piwik\Tracker\Request;
* - X-Do-Not-Track header (used by AdBlockPlus and NoScript) * - X-Do-Not-Track header (used by AdBlockPlus and NoScript)
* - DNT header (used by Mozilla) * - DNT header (used by Mozilla)
* *
* Note: visits from Internet Explorer and other browsers that have DoNoTrack enabled by default will be tracked anyway.
*/ */
class DoNotTrackHeaderChecker class DoNotTrackHeaderChecker
{ {
public function __construct(Config $config = null)
{
$this->config = $config ?: new Config();
}
/** /**
* Checks for DoNotTrack headers and if found, sets `$exclude` to `true`. * Checks for DoNotTrack headers and if found, sets `$exclude` to `true`.
*/ */
...@@ -31,25 +37,9 @@ class DoNotTrackHeaderChecker ...@@ -31,25 +37,9 @@ class DoNotTrackHeaderChecker
return; return;
} }
if (!$this->isActive()) { $exclude = $this->isDoNotTrackFound();
Common::printDebug("DoNotTrack support is not enabled, skip check");
return;
}
if ((isset($_SERVER['HTTP_X_DO_NOT_TRACK']) && $_SERVER['HTTP_X_DO_NOT_TRACK'] === '1')
|| (isset($_SERVER['HTTP_DNT']) && substr($_SERVER['HTTP_DNT'], 0, 1) === '1')
) {
$request = new Request($_REQUEST);
$ua = $request->getUserAgent();
if (strpos($ua, 'MSIE') !== false
|| strpos($ua, 'Trident') !== false) {
Common::printDebug("INTERNET EXPLORER enable DoNotTrack by default; so Piwik ignores DNT IE browsers...");
return;
}
Common::printDebug("DoNotTrack header found!");
$exclude = true; if($exclude) {
$trackingCookie = IgnoreCookie::getTrackingCookie(); $trackingCookie = IgnoreCookie::getTrackingCookie();
$trackingCookie->delete(); $trackingCookie->delete();
...@@ -58,27 +48,50 @@ class DoNotTrackHeaderChecker ...@@ -58,27 +48,50 @@ class DoNotTrackHeaderChecker
// /.well-known/dnt // /.well-known/dnt
// per Tracking Preference Expression (draft) // per Tracking Preference Expression (draft)
header('Tk: 1'); header('Tk: 1');
} else { }
}
/**
* @return bool
*/
public function isDoNotTrackFound()
{
if (!$this->isActive()) {
Common::printDebug("DoNotTrack support is not enabled, skip check");
return false;
}
if (!$this->isHeaderDntFound()) {
Common::printDebug("DoNotTrack header not found"); Common::printDebug("DoNotTrack header not found");
return false;
}
$request = new Request($_REQUEST);
$userAgent = $request->getUserAgent();
if ($this->isUserAgentExcludedFromDNT($userAgent)) {
Common::printDebug("INTERNET EXPLORER enable DoNotTrack by default; so Piwik ignores DNT IE browsers...");
return false;
} }
Common::printDebug("DoNotTrack header found!");
return true;
} }
/** /**
* Deactivates DoNotTrack header checking. This function will not be called by the Tracker. * Deactivates DoNotTrack header checking. This function will not be called by the Tracker.
*/ */
public static function deactivate() public function deactivate()
{ {
$config = new Config(); $this->config->doNotTrackEnabled = false;
$config->doNotTrackEnabled = false;
} }
/** /**
* Activates DoNotTrack header checking. This function will not be called by the Tracker. * Activates DoNotTrack header checking. This function will not be called by the Tracker.
*/ */
public static function activate() public function activate()
{ {
$config = new Config(); $this->config->doNotTrackEnabled = true;
$config->doNotTrackEnabled = true;
} }
/** /**
...@@ -86,9 +99,47 @@ class DoNotTrackHeaderChecker ...@@ -86,9 +99,47 @@ class DoNotTrackHeaderChecker
* *
* @return bool * @return bool
*/ */
public static function isActive() public function isActive()
{
return $this->config->doNotTrackEnabled;
}
/**
* @return bool
*/
protected function isHeaderDntFound()
{
return (isset($_SERVER['HTTP_X_DO_NOT_TRACK']) && $_SERVER['HTTP_X_DO_NOT_TRACK'] === '1')
|| (isset($_SERVER['HTTP_DNT']) && substr($_SERVER['HTTP_DNT'], 0, 1) === '1');
}
/**
*
* @param $userAgent
* @return bool
*/
protected function isUserAgentExcludedFromDNT($userAgent)
{
$browsersWithDnt = $this->getBrowsersWithDNTAlwaysEnabled();
foreach($browsersWithDnt as $userAgentBrowserFragment) {
if (strpos($userAgent, $userAgentBrowserFragment) !== false) {
return true;
}
}
return false;
}
/**
* Some browsers have DNT enabled by default. For those we will ignore DNT and always track those users.
*
* @return array
*/
protected function getBrowsersWithDNTAlwaysEnabled()
{ {
$config = new Config(); return array(
return $config->doNotTrackEnabled; //
'MSIE',
'Trident',
);
} }
} }
plugins/PrivacyManager/PrivacyManager.php
+ 4
3
Voir le fichier @ 14e557bf
...@@ -177,7 +177,7 @@ class PrivacyManager extends Plugin ...@@ -177,7 +177,7 @@ class PrivacyManager extends Plugin
// default values // default values
$form->addDataSource(new HTML_QuickForm2_DataSource_Array(array( $form->addDataSource(new HTML_QuickForm2_DataSource_Array(array(
'do_not_track' => DoNotTrackHeaderChecker::isActive(), 'do_not_track' => $this->dntChecker->isActive(),
'anonymise_ip' => IPAnonymizer::isActive(), 'anonymise_ip' => IPAnonymizer::isActive(),
))); )));
} }
...@@ -190,10 +190,11 @@ class PrivacyManager extends Plugin ...@@ -190,10 +190,11 @@ class PrivacyManager extends Plugin
public function installationFormSubmit(FormDefaultSettings $form) public function installationFormSubmit(FormDefaultSettings $form)
{ {
$doNotTrack = (bool) $form->getSubmitValue('do_not_track'); $doNotTrack = (bool) $form->getSubmitValue('do_not_track');
$dntChecker = new DoNotTrackHeaderChecker();
if ($doNotTrack) { if ($doNotTrack) {
DoNotTrackHeaderChecker::activate(); $dntChecker->activate();
} else { } else {
DoNotTrackHeaderChecker::deactivate(); $dntChecker->deactivate();
} }
$anonymiseIp = (bool) $form->getSubmitValue('anonymise_ip'); $anonymiseIp = (bool) $form->getSubmitValue('anonymise_ip');
......
tests/PHPUnit/Framework/Fixture.php
+ 2
1
Voir le fichier @ 14e557bf
...@@ -227,7 +227,8 @@ class Fixture extends \PHPUnit_Framework_Assert ...@@ -227,7 +227,8 @@ class Fixture extends \PHPUnit_Framework_Assert
if ($this->configureComponents) { if ($this->configureComponents) {
IPAnonymizer::deactivate(); IPAnonymizer::deactivate();
DoNotTrackHeaderChecker::deactivate(); $dntChecker = new DoNotTrackHeaderChecker();
$dntChecker->deactivate();
} }
if ($this->createSuperUser) { if ($this->createSuperUser) {
......
0% ou .
You are about to add 0 people to the discussion. Proceed with caution.
Terminez d'abord l'édition de ce message.
Veuillez vous inscrire ou vous pour commenter