Add enforcement for deviceAccess (prebid#4913)

* Add microadBidAdapter

* Remove unnecessary encodeURIComponent from microadBidAdapter

* Submit Advangelists Prebid Adapter

* Submit Advangelists Prebid Adapter 1.1

* Correct procudtion endpoint for prebid

* analytics update with wrapper name

* reverted error merge

* update changed default value of netRevenue to true

* Re-add rubicon analytics without deprecated getTopWindowUrl util

* Cache referrer on auction_init instead of bid_requested

* add config for deviceAccess enforcement in utils getCookie setCookie and hasLocalStorage

* add tests, and updates to names/comments

* add deviceAccess enforcement to util method cookiesAreEnabled

* update to adspendBidAdapter for device access enforcement

* update to pubCommonId for device access enforcement

* update widespaceBidAdapter for device access enforcement. updated utils storage methods with jsdoc typing, hasLocalStorage changed to only return boolean type

* update to digiTrustIdSystem for device access enforcement

* updated utils.setCookie signature, adding a 'domain' argument. update to invibesBidAdapter for device access enforcement

* updated utils to group similar storage methods

* updated kargoBidAdapter for add-enforcement-device-access

* update to minimize changes in adapters using browser storage

* updated modules with localStorage or cookie methods to use utils

* updated invibesBidAdapter use of storage methods to use utils

* fix for wrong obj reference for date string

* revert accidental change to package.json

* fix linting error, trailing comma. removed unnecessary cookie get set functions and replaced with util methods

* reverted change to removed extra methods since it breaks unit test

* fix for pubcommonidsystem id generation

* update jsdoc param 'domain'

* Update adagioBidAdapter.js

merging changes from prebid#4978

* Removing encoding in DT encId

We need to get moving on this merge, so I made an update -- the encId() function appears to be necessary to stringify and btoa() the ID. Just removed the layer of URL encoding in that function as duplicate of what happens in the PBJS setCookie fn.

Co-authored-by: nakamoto <[email protected]>
Co-authored-by: Chandra Prakash <[email protected]>
Co-authored-by: Eric Harper <[email protected]>
Co-authored-by: TJ Eastmond <[email protected]>
Co-authored-by: Mark Monday <[email protected]>
Co-authored-by: msm0504 <[email protected]>
Co-authored-by: bretg <[email protected]>

Author: 8 people

modules/adagioBidAdapter.js

@@ -22,8 +22,7 @@ pV6EP3MTLosuUEpLaQIDAQAB
 
 export function getAdagioScript() {
   try {
-    const w = utils.getWindowTop();
-    const ls = w.localStorage.getItem(ADAGIO_LOCALSTORAGE_KEY);
+    const ls = utils.getDataFromLocalStorage(ADAGIO_LOCALSTORAGE_KEY);
 
     if (!ls) {
       utils.logWarn('Adagio Script not found');
@@ -34,7 +33,7 @@ export function getAdagioScript() {
 
     if (!hashRgx.test(ls)) {
       utils.logWarn('No hash found in Adagio script');
-      w.localStorage.removeItem(ADAGIO_LOCALSTORAGE_KEY);
+      utils.removeDataFromLocalStorage(ADAGIO_LOCALSTORAGE_KEY);
     } else {
       const r = ls.match(hashRgx);
       const hash = r[2];
@@ -48,7 +47,7 @@ export function getAdagioScript() {
         Function(ls)(); // eslint-disable-line no-new-func
       } else {
         utils.logWarn('Invalid Adagio script found');
-        w.localStorage.removeItem(ADAGIO_LOCALSTORAGE_KEY);
+        utils.removeDataFromLocalStorage(ADAGIO_LOCALSTORAGE_KEY);
       }
     }
   } catch (err) {

modules/adkernelAdnAnalyticsAdapter.js

@@ -175,10 +175,10 @@ const ORGANIC = '(organic)';
 
 export let storage = {
   getItem: (name) => {
-    return localStorage.getItem(name);
+    return utils.getDataFromLocalStorage(name);
   },
   setItem: (name, value) => {
-    localStorage.setItem(name, value);
+    utils.setDataInLocalStorage(name, value);
   }
 };
 

modules/adspendBidAdapter.js

@@ -8,7 +8,6 @@ const BIDDER_CODE = 'adspend';
 const BID_URL = 'https://rtb.com.ru/headerbidding-bid';
 const SYNC_URL = 'https://rtb.com.ru/headerbidding-sync?uid={UUID}';
 const COOKIE_NAME = 'hb-adspend-id';
-const UUID_LEN = 36;
 const TTL = 10000;
 const RUB = 'RUB';
 const FIRST_PRICE = 1;
@@ -146,16 +145,14 @@ export const spec = {
 }
 
 const getUserID = () => {
-  const i = document.cookie.indexOf(COOKIE_NAME);
+  const i = utils.getCookie(COOKIE_NAME);
 
-  if (i === -1) {
+  if (i === null) {
     const uuid = utils.generateUUID();
-    document.cookie = `${COOKIE_NAME}=${uuid}; path=/`;
+    utils.setCookie(COOKIE_NAME, uuid);
     return uuid;
   }
-
-  const j = i + COOKIE_NAME.length + 1;
-  return document.cookie.substring(j, j + UUID_LEN);
+  return i;
 };
 
 const getFormats = arr => arr.map((s) => {

modules/criteoBidAdapter.js

@@ -436,7 +436,7 @@ export function tryGetCriteoFastBid() {
   try {
     const fastBidStorageKey = 'criteo_fast_bid';
     const hashPrefix = '// Hash: ';
-    const fastBidFromStorage = localStorage.getItem(fastBidStorageKey);
+    const fastBidFromStorage = utils.getDataFromLocalStorage(fastBidStorageKey);
 
     if (fastBidFromStorage !== null) {
       // The value stored must contain the file's encrypted hash as first line
@@ -445,7 +445,7 @@ export function tryGetCriteoFastBid() {
 
       if (firstLine.substr(0, hashPrefix.length) !== hashPrefix) {
         utils.logWarn('No hash found in FastBid');
-        localStorage.removeItem(fastBidStorageKey);
+        utils.removeDataFromLocalStorage(fastBidStorageKey);
       } else {
         // Remove the hash part from the locally stored value
         const publisherTagHash = firstLine.substr(hashPrefix.length);
@@ -459,7 +459,7 @@ export function tryGetCriteoFastBid() {
           utils.insertElement(script);
         } else {
           utils.logWarn('Invalid Criteo FastBid found');
-          localStorage.removeItem(fastBidStorageKey);
+          utils.removeDataFromLocalStorage(fastBidStorageKey);
         }
       }
     }

modules/digiTrustIdSystem.js

@@ -69,7 +69,7 @@ function encId(id) {
     if (typeof (id) !== 'string') {
       id = JSON.stringify(id);
     }
-    return encodeURIComponent(btoa(id));
+    return btoa(id);
   } catch (ex) {
     return id;
   }
@@ -83,8 +83,7 @@ function writeDigiId(id) {
   var key = 'DigiTrust.v1.identity';
   var date = new Date();
   date.setTime(date.getTime() + 604800000);
-  var exp = 'expires=' + date.toUTCString();
-  document.cookie = key + '=' + encId(id) + '; ' + exp + '; path=/;SameSite=none;';
+  utils.setCookie(key, encId(id), date.toUTCString(), 'none');
 }
 
 /**

modules/fintezaAnalyticsAdapter.js

@@ -46,8 +46,8 @@ function getUniqId() {
   let uniq = cookies[ UNIQ_ID_KEY ];
   if (!uniq) {
     try {
-      if (window.localStorage) {
-        uniq = window.localStorage.getItem(UNIQ_ID_KEY) || '';
+      if (utils.hasLocalStorage()) {
+        uniq = utils.getDataFromLocalStorage(UNIQ_ID_KEY) || '';
         isUniqFromLS = true;
       }
     } catch (b) {}
@@ -62,7 +62,7 @@ function getUniqId() {
     expires.setFullYear(expires.getFullYear() + 10);
 
     try {
-      document.cookie = UNIQ_ID_KEY + '=' + uniq + '; path=/; expires=' + expires.toUTCString();
+      utils.setCookie(UNIQ_ID_KEY, uniq, expires.toUTCString());
     } catch (e) {}
   }
 
@@ -90,7 +90,7 @@ function initFirstVisit() {
     now.setFullYear(now.getFullYear() + 20);
 
     try {
-      document.cookie = FIRST_VISIT_DATE + '=' + visitDate + '; path=/; expires=' + now.toUTCString();
+      utils.setCookie(FIRST_VISIT_DATE, visitDate, now.toUTCString());
     } catch (e) {}
   }
 
@@ -110,7 +110,7 @@ function parseCookies(cookie) {
   let param, value;
   let i, j;
 
-  if (!cookie) {
+  if (!cookie || !utils.cookiesAreEnabled()) {
     return {};
   }
 
@@ -203,7 +203,7 @@ function initSession() {
   }
 
   try {
-    document.cookie = SESSION_ID + '=' + sessionId + '; path=/; expires=' + expires.toUTCString();
+    utils.setCookie(SESSION_ID, sessionId, expires.toUTCString());
   } catch (e) {}
 
   return {
@@ -249,10 +249,10 @@ function saveTrackRequestTime() {
   const expires = new Date(now + SESSION_DURATION);
 
   try {
-    if (window.localStorage) {
-      window.localStorage.setItem(TRACK_TIME_KEY, now.toString());
+    if (utils.hasLocalStorage()) {
+      utils.setDataInLocalStorage(TRACK_TIME_KEY, now.toString());
     } else {
-      document.cookie = TRACK_TIME_KEY + '=' + now + '; path=/; expires=' + expires.toUTCString();
+      utils.setCookie(TRACK_TIME_KEY, now.toString(), expires.toUTCString());
     }
   } catch (a) {}
 }
@@ -261,9 +261,9 @@ function getTrackRequestLastTime() {
   let cookie;
 
   try {
-    if (window.localStorage) {
+    if (utils.hasLocalStorage()) {
       return parseInt(
-        window.localStorage.getItem(TRACK_TIME_KEY) || 0,
+        utils.getDataFromLocalStorage(TRACK_TIME_KEY) || 0,
         10,
       );
     }

modules/invibesBidAdapter.js

@@ -276,14 +276,14 @@ function getCappedCampaignsAsString() {
 
   let loadData = function () {
     try {
-      return JSON.parse(localStorage.getItem(key)) || {};
+      return JSON.parse(utils.getDataFromLocalStorage(key)) || {};
     } catch (e) {
       return {};
     }
   };
 
   let saveData = function (data) {
-    localStorage.setItem(key, JSON.stringify(data));
+    utils.setDataInLocalStorage(key, JSON.stringify(data));
   };
 
   let clearExpired = function () {
@@ -319,7 +319,7 @@ function getCappedCampaignsAsString() {
 const noop = function () { };
 
 function initLogger() {
-  if (localStorage && localStorage.InvibesDEBUG) {
+  if (utils.hasLocalStorage() && localStorage.InvibesDEBUG) {
     return window.console;
   }
 
@@ -384,6 +384,7 @@ invibes.Uid = {
 
 let cookieDomain;
 invibes.getCookie = function (name) {
+  if (!utils.cookiesAreEnabled()) { return; }
   let i, x, y;
   let cookies = document.cookie.split(';');
   for (i = 0; i < cookies.length; i++) {
@@ -397,16 +398,15 @@ invibes.getCookie = function (name) {
 };
 
 invibes.setCookie = function (name, value, exdays, domain) {
+  if (!utils.cookiesAreEnabled()) { return; }
   let whiteListed = name == 'ivNoCookie' || name == 'IvbsCampIdsLocal';
   if (invibes.noCookies && !whiteListed && (exdays || 0) >= 0) { return; }
   if (exdays > 365) { exdays = 365; }
   domain = domain || cookieDomain;
   let exdate = new Date();
   let exms = exdays * 24 * 60 * 60 * 1000;
   exdate.setTime(exdate.getTime() + exms);
-  let cookieValue = value + ((!exdays) ? '' : '; expires=' + exdate.toUTCString());
-  cookieValue += ';domain=' + domain + ';path=/';
-  document.cookie = name + '=' + cookieValue;
+  utils.setCookie(name, value, exdate.toUTCString(), undefined, domain);
 };
 
 let detectTopmostCookieDomain = function () {

modules/kargoBidAdapter.js

@@ -98,6 +98,9 @@ export const spec = {
 
   // PRIVATE
   _readCookie(name) {
+    if (!utils.cookiesAreEnabled()) {
+      return null;
+    }
     let nameEquals = `${name}=`;
     let cookies = document.cookie.split(';');
 
@@ -170,7 +173,7 @@ export const spec = {
 
   _getLocalStorageSafely(key) {
     try {
-      return localStorage.getItem(key);
+      return utils.getDataFromLocalStorage(key);
     } catch (e) {
       return null;
     }

modules/mantisBidAdapter.js

@@ -1,4 +1,5 @@
 import {registerBidder} from '../src/adapters/bidderFactory.js';
+import * as utils from '../src/utils.js';
 
 function inIframe() {
   try {
@@ -92,9 +93,9 @@ function storeUuid(uuid) {
     return false;
   }
   window.mantis_uuid = uuid;
-  if (window.localStorage) {
+  if (utils.hasLocalStorage()) {
     try {
-      window.localStorage.setItem('mantis:uuid', uuid);
+      utils.setDataInLocalStorage('mantis:uuid', uuid);
     } catch (ex) {
     }
   }
@@ -175,8 +176,8 @@ function buildMantisUrl(path, data, domain) {
   }
   if (window.mantis_uuid) {
     params.uuid = window.mantis_uuid;
-  } else if (window.localStorage) {
-    var localUuid = window.localStorage.getItem('mantis:uuid');
+  } else if (utils.hasLocalStorage()) {
+    var localUuid = utils.getDataFromLocalStorage('mantis:uuid');
     if (localUuid) {
       params.uuid = localUuid;
     }

modules/mgidBidAdapter.js

@@ -342,15 +342,15 @@ function getLanguage() {
 
 function getLocalStorageSafely(key) {
   try {
-    return localStorage.getItem(key);
+    return utils.getDataFromLocalStorage(key);
   } catch (e) {
     return null;
   }
 }
 
 function setLocalStorageSafely(key, val) {
   try {
-    return localStorage.setItem(key, val);
+    return utils.setDataInLocalStorage(key, val);
   } catch (e) {
     return null;
   }

modules/nanointeractiveBidAdapter.js

@@ -97,7 +97,7 @@ function createSingleBidRequest(bid, bidderRequest) {
 
 function createSingleBidResponse(serverBid) {
   if (serverBid.userId) {
-    localStorage.setItem('lsUserId', serverBid.userId);
+    utils.setDataInLocalStorage('lsUserId', serverBid.userId);
   }
   return {
     requestId: serverBid.id,
@@ -147,8 +147,8 @@ function getEndpointUrl() {
 }
 
 function getLsUserId() {
-  if (localStorage.getItem('lsUserId') != null) {
-    return localStorage.getItem('lsUserId');
+  if (utils.getDataFromLocalStorage('lsUserId') != null) {
+    return utils.getDataFromLocalStorage('lsUserId');
   }
   return null;
 }

modules/newborntownWebBidAdapter.js

@@ -53,10 +53,10 @@ export const spec = {
       return null;
     }
     var guid;
-    if (localStorage.getItem('sax_user_id') == null) {
-      localStorage.setItem('sax_user_id', generateGUID())
+    if (utils.getDataFromLocalStorage('sax_user_id') == null) {
+      utils.setDataInLocalStorage('sax_user_id', generateGUID())
     }
-    guid = localStorage.getItem('sax_user_id')
+    guid = utils.getDataFromLocalStorage('sax_user_id')
     utils._each(validBidRequests, function(bidRequest) {
       const bidRequestObj = bidRequest.params
       var req = {

modules/orbidderBidAdapter.js

@@ -1,14 +1,15 @@
 import {detectReferer} from '../src/refererDetection.js';
 import {ajax} from '../src/ajax.js';
 import {registerBidder} from '../src/adapters/bidderFactory.js';
+import * as utils from '../src/utils.js';
 
 export const spec = {
   code: 'orbidder',
   bidParams: {},
   orbidderHost: (() => {
     let ret = 'https://orbidder.otto.de';
     try {
-      ret = localStorage.getItem('ov_orbidder_host') || ret;
+      ret = utils.getDataFromLocalStorage('ov_orbidder_host') || ret;
     } catch (e) {
     }
     return ret;