Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-28631

forbid use of cookies especially from javascript

    XMLWordPrintable

Details

    • Bug
    • Status: Closed
    • Blocker
    • Resolution: Duplicate
    • 2.1
    • None
    • General, SCORM, Themes
    • 40

    Description

      Our developers and theme designers keep smuggling in cookies, this is not compatible with $CFG->cookiehttponly and is against some privacy laws.

      Simply stop relying on cookies and if necessary use user preferences.

      Offenders:

      • admin roles UI
      • lib/cookies.js
      • scorm data model
      • repository
      • anomaly theme

      Solution:
      1/ educate integrators and developers - see MDL-17084 for ajax user preferences
      2/ fix the code
      3/ fix dev docs

      Attachments

        Issue Links

          has a non-specific relationship to

          Sub-task - Issues are sometimes broken into multiple sub-tasks. MDL-17084 Allow JavaScript to set user preferences

          • Minor - Minor loss of function where workaround is possible
          • Closed

          Improvement - An enhancement to an existing Moodle feature. CONTRIB-3652 Rewrite Collapsed Topics for Moodle 2.3

          • Minor - Minor loss of function where workaround is possible
          • Resolved
          has been marked as being related by

          Sub-task - Issues are sometimes broken into multiple sub-tasks. MDL-33541 Do not use cookies in filepicker and filemanager

          • Major - Major loss of function, incorrect output
          • Closed
          is blocked by

          Improvement - An enhancement to an existing Moodle feature. MDL-41289 create ajax method to get user pref

          • Minor - Minor loss of function where workaround is possible
          • Closed
          will be (partly) resolved by

          Bug - A problem which impairs or prevents Moodle from functioning correctly. MDL-31659 remove old SCORM file

          • Minor - Minor loss of function where workaround is possible
          • Closed

          Bug - A problem which impairs or prevents Moodle from functioning correctly. MDL-41225 SCORM - remove use of cookie for debugging

          • Minor - Minor loss of function where workaround is possible
          • Closed

          Activity

            People

              moodle.com Moodle HQ
              skodak Petr Skoda
              Adrian Greeve, David Woloszyn, Huong Nguyen, Jake Dallimore, Meirza, Michael Hawkins, Raquel Ortega, Safat Shahin, Stevani Andolo, Dan Marsden, Matteo Scaramuccia, Ilya Tregubov, Kevin Percy, Mathew May, Mihail Geshoski, Shamim Rezaie, Huong Nguyen, Bas Brands, Mathew May
              Votes:
              1 Vote for this issue
              Watchers:
              10 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: