[meta] Total Cookie Protection Rollout
Categories
(Core :: Privacy: Anti-Tracking, enhancement, P1)
Tracking
()
Tracking | Status | |
---|---|---|
firefox94 | --- | affected |
People
(Reporter: kkim, Unassigned)
References
(Depends on 2 open bugs, Blocks 1 open bug, )
Details
(Keywords: meta, privacy)
Staged rollout to message eligible release population upon Fx94 enrollment/onboarding with an opt-in invitation to enable Total Cookie Protection in Standard Browsing. If user accepts the invitation, a pref switch will be flipped to "on" to immediately commence stronger privacy protection from third-party cookie tracking.
Currently, TCP is only enabled in Private Browsing windows or Strict Mode for Release population. TCP is turned on by default in Standard Browsing for Nightly users.
By the end of the rollout program, TCP will be set as default to 100% of users.
DEPENDS ON:
https://bugzilla.mozilla.org/show_bug.cgi?id=1727384
REPLACES:
https://bugzilla.mozilla.org/show_bug.cgi?id=1728855
https://bugzilla.mozilla.org/show_bug.cgi?id=1728856
AS OF 9/20: Formally unlinking TCP opt-in messaging from Monochromatic Onboarding
Comment 1•3 years ago
•
|
||
What's the intended rollout behavior? Nimbus can rollout an opt-in message where we have the button set network.cookie.cookieBehavior
user pref value to 5
if it's already 4
. But with bug 1732271, it seems like it's not desirable to directly set the cookieBehavior
pref?
Or is that extra pref specially for normandy to change a pref value (while nimbus doesn't need an extra pref)? If so, message targeting should look for users who have that special pref set, but the new behavior from bug 1732271 seems like it turns on TCP already, so there's no need for an opt-in?
Comment 2•3 years ago
|
||
Sounds like the desire is to show the spotlight modal on restart without conflicting with the major upgrade spotlight for users who have the current default cookie behavior (4 - this avoids showing the message to people who have custom behavior where changing the pref with bug 1732471 wouldn't actually change behavior). Rollout isn't locale-specific, so we'll need strings to land with bug 1732732. I believe the current spotlight template add in bug 1728420 will be sufficient.
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•3 years ago
|
Updated•2 years ago
|
Comment 3•2 years ago
|
||
With https://senglehardt.com/test/dfpi/storage_access_api.html being broken does anyone has other sure ways of testing TCP?
Comment 4•2 years ago
|
||
thankyou |
We have a mozilla hosted test site and the same test can be found here. https://www.mozilla-anti-tracking.com/test/dfpi/storage_access_api.html
Updated•2 years ago
|
Description
•