HTTP DNT (Do-Not-Track) Demystified

Do Not Track HTTP DNT
Do Not Track Logo
There has been a lots of buzz around the new DNT (Do-Not-Track) privacy preference.

The Do Not Track (DNT) header is the proposed HTTP header field DNT that requests that a web application should disable its tracking of an individual use. This feature is currently being standardized by W3C, and will function similar to Do Not Call registry. Today, there is no clear definition what it means to be "tracked" (according to IETF draft: Tracking includes collection, retention, and use of all data related to the request and response), advertisers aren't legally bound to comply the Do Not Track requests, and it still remains up to application developers to implement.

Lets assume you want to be the one app developers who foresees that DNT will be mandatory in next 12 months and would like to incorporate this in your app. How would you detect if user has enabled it?

Depending on browser and your app nature, you have two options:
  • Use HTTP headers
  • Use JavaScript variables
In PHP, you would detect it from $_SERVER variables:

<?php echo (isset($_SERVER['HTTP_DNT']) && (1 == $_SERVER['HTTP_DNT'])) ? 'DNT Enabled' : 'DNT Not Enabled' ?>

In JavaScript you would try something like this:

<script type="text/javascript">
console.log(navigator.doNotTrack);
console.log(navigator.msDoNotTrack); // for IE9
</script>

For most of the browsers, this setting is buried deep under the settings; however according to Microsoft,  this option is turned now on by default since December 2012, and there is no turning back.

Big companies like Google and Facebook claim that this is too complicated for end users to understand, and have decided to ignore this setting. Both are heavily focused on retargeting and one-to-one marketing, which essentially is relying on 3rd party cookies and tracking your behavior. Should you follow the big leaders, or will you respect opt-out settings by browsers?

Want to know more, visit http://donottrack.us

Comments

Post a Comment

Popular posts from this blog

Stubbing and Mocking Static Methods with PHPUnit

Image
PHPUnit has ability to stub and mock static methods. Consider the class Foo : <?php class Foo { public static function doSomething() { return static::helper(); } public static function helper() { return 'foo'; } } ?> To test the static helper() function with PHPUnit, you can write you test like that: <?php class FooTest extends PHPUnit_Framework_TestCase { public function testDoSomething() { $class = $this->getMockClass( 'Foo', /* name of class to mock */ array('helper') /* list of methods to mock */ ); $class::staticExpects($this->any()) ->method('helper') ->will($this->returnValue('bar')); $this->assertEquals( 'bar', $class::doSomething() ); } } ?> The new staticExpects() method works similar to the non-static expects
Read more

Enable HTTP/2 Support in AWS ELB

Image
This thread  was started more than a year ago, asking for when Amazon Web Services will add support for HTTP/2  into their ELB. In addition to that, people are also asking, how to configure ELB to support multiple SSL certificates. AWS support team has been reluctant on giving out any specific details on when both of these features will be available, citing: I've verified that the ELB team is aware of the interest in ELB supporting HTTP/2. Please keep an eye on What's New from Amazon Web Services: http://aws.amazon.com/new/ for any updates. What is HTTP/2? HTTP/2 is a replacement for how HTTP is expressed “on the wire.” It is not a ground-up rewrite of the protocol; HTTP methods, status codes and semantics are the same, and it should be possible to use the same APIs as HTTP/1.x (possibly with some small additions) to represent the protocol. HTTP/2 protocol is supported by major modern browsers including IE11, Edge 13, Firefox 47, Chrome 52, Safari 9.1, Opera 38, i
Read more

How To Attach Your EBS volume to multiple EC2 instances

Image
Are you exhausted from the complexities and the extra cost associated with the EFS? What if you simply need to share the EBS volume between two EC2 instances? Say no more - Amazon Web Services has an answer for you! Starting today, customers running Linux on Amazon Elastic Compute Cloud (EC2) can take advantage of new support for  attaching  Provisioned IOPS ( io1 ) EBS volumes to  multiple EC2 instances , at  no extra charge ! Multi-Attach option in EBS According to AWS, the Multi-Attach capability makes it easier to achieve higher availability for applications that provide write-ordering to maintain storage consistency. Consider the following scenario: you are running a web application behind the load balancer, and the application expects static assets, such as WordPress media uploads, theme or configuration files, shared between the instances. Instead of using EFS, you could create new PIOPS EBS volume with the Multi-Attach option, mount the volume on each s
Read more