Contrib.social

Better privacy for youtube videos

Open on Drupal.org →
Created on 27 March 2019, about 6 years ago
Updated 12 April 2024, about 1 year ago

My suggestion:

It would be great if we can select a nocookie-checkbox in the video_oembed media entity. With this, all youtube urls change automatic to youtube-nocookie.com urls.

Why automatically?
Because users copy the wrong URLs from youtube.

Source:
https://dri.es/how-to-remove-youtube-tracking

A step further:
Another approach for more privacy is this wordpress-variant:
https://de.wordpress.org/plugins/wp-youtube-lyte/

Feature request
Status

Active

Version

11.0 🔥

Component
Media 

Last updated about 19 hours ago

Created by

🇨🇭Switzerland handkerchief

Live updates comments and jobs are added and updated live.
Sign in to follow issues

Comments & Activities

Not all content is available!

It's likely this issue predates Contrib.social: some issue and comment data are missing.

  • Comment about 2 years ago
    🇮🇹Italy finex

    Thanks for #35 :-)

  • Comment over 1 year ago
    🇺🇸United States Chris Matthews
  • Comment over 1 year ago
    🇩🇪Germany marcoka

    Just FYI if you switch to the nocookie domain cookies get still loaded, external fonts.
    Even if you link the hir-es image from youtube directly cookies are set.
    The only solutions seems to be to load and use the thumb oembed itself stores in the oembed folder in /files

  • Comment over 1 year ago
    🇨🇭Switzerland ytsurk Switzerland

    I also decided (again) to go with a custom solution .. using data-src, the oembed thumbnail and the no-cookie domain.
    (Not using a consent banner, so the cookies module seemed to heavy for me, although I did not tried)

    But still I would welcome the no-cookie domain and the vimeo setting toggle (aka more privacy) for core's external video media type!

  • Comment about 1 year ago
    🇲🇽Mexico luisnicg

    I applied the hook that Berdir shared in the first comment but I had to complement the solution by passing the entity id to the iframe controller, that way I was able to load the media entity data. In my case I added a custom field to my Remote Video media type to determine whether to replace youtube.com by youtube-nocookie.com or not.

    use Drupal\media\IFrameMarkup;

/**
 * Implements hook_preprocess_media_oembed_iframe().
 */
function mymodule_updates_preprocess_media_oembed_iframe(array &$variables) {
  if (strpos((string) $variables['media'], 'youtube.com') !== FALSE) {
    $entity_id = $variables['entity_id'];
    $remote_video = \Drupal::entityTypeManager()->getStorage('media')->load($entity_id);
    $no_cookies = $remote_video->get('field_nocookies')->value;
    if ($no_cookies) {
      $variables['media'] = IFrameMarkup::create(str_replace('youtube.com/', 'youtube-nocookie.com/', $variables['media']));
    }
  }
}
  • Comment 4 days ago
    🇩🇪Germany joachim namyslo Kulmbach 🇩🇪 🇪🇺

    Dear Community, It's a bit of a shame that we're not pursuing this issue further. We now have Klaro! and can provide decent privacy notices, but our videos are still being loaded from youtube.com. Could we perhaps address this issue in Zewitnah and simply offer Youtube Nocookie as a third alternative Oembed provider for Drupal Core?

    That would be so nice and simple. The easiest solution for users would be if they could simply paste normal URLs from YouTube Studio and the Oembed provider would have a checkbox in the formatter options to choose whether to use the normal YouTube version or no-cookie. I mean, if we're implementing data protection in Drupal, we might as well do it right, right?

contrib.social Blog FAQ Discussions
Production build 0.71.5 2024