-
Notifications
You must be signed in to change notification settings - Fork 7
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
GPDR: Date Field/Jquery UI links a Stylesheet from ajax.googleapis.com #38
Comments
Besides of that i get some "jQuery not defined" errors with the jQuery-UI and Datepicker JS load, which i think will be at the same Corner. You can see it at the example page console. |
JQuery UI stylesheets are never included in a plugin/theme, if so that's bad practice in my book. I am not aware this is in conflict with GDPR, Fonts yes, but none are being loaded in the jQuery UI stylesheets. So don't see what is the issue here.
I disagree, themeing should be in themes is at all, and this is squarely in the realm of themeing. You can easily override this in your themes function file, add_action('smart_grid_register_styles','register_styles',10,0);
function register_styles(){
global $wp_scripts;
$ui_ver = '1.12.1'; //default, but dynamically updated with the version of jquery included in WP.
if(!empty($wp_scripts)) $ui_ver = $wp_scripts->query('jquery-ui-core')->ver;
$protocol = is_ssl() ? 'https' : 'http';
$url_path = "$protocol://ajax.googleapis.com/ajax/libs/jqueryui/{$ui_ver}/";
wp_register_style('cf7-jquery-ui', $url_path . 'themes/smoothness/jquery-ui.min.css', array(), $ui_ver , 'all');
wp_register_style( 'cf7-jquery-ui-theme', $url_path . 'jquery-ui.theme.min.css', array(), $ui_ver, 'all');
wp_register_style( 'cf7-jquery-ui-structure', $url_path . 'jquery-ui.structure.min.css', array(), $ui_ver, 'all');
} use register rather than enqueue to ensure you don't load theme unnecessarily for all forms.
In v5.0, which is currently being worked on, jQuery UI will be completely removed, so all these issues will be removed. |
then it should be loaded from the problem is exactly the same with google fonts. a user loads the page and it connects to a google server which leads the client to send all http-headers including IP Adress and Browser Fingerprint to it without consent (and a normal user don't even notice, what happend). where can i set this mentioned
i agree but the style-load is in your plugin - which leeds to problems, so maybe omitting own styles an relying on WP Styles/Theming might be the best option here. Anyway - if the plugin loads styles, what is the difference when loading from a themes folder inside of the plugin? Besides of all that, the uBlock Origin Firefox extension is blocking the request to the google api, so the style never gets loaded in browsers with AdBlock active. When you plan something new, please take this into account. Also found a call to |
I researched our older discussion where i found the |
this is set when the airplane mode plugin is activated. I use this for working when travelling and don't have an Internet connection.
Indeed, but the majority of those css files only affect the layout and not the look. For example the grid layout of forms is using a pure CSS library to set out the columns. JQuery UI in that sense is squarely in the themeing realm, affecting and therefore potentially conflicting with the stylesheets loaded by a theme.
this is used by the select2 js plugin.
it still loads styles and scripts depending on what functionality you use. However, all these can be overloaded with the script/style action hook mentioned above. |
I am not sure how all this impacts the GDPR compliance, can you explain? |
I think this one's clear to see: https://law.stackexchange.com/questions/49412/gdpr-and-cdn-content-delivery-networks Every page using it will need to adopt the privacy policy at least or disable that part at least until a consent (depending on your lawers advice). |
I have checked now the file and in the functions -since 4.11.0
This parts are completely missing:
In my honest opionion, using CDN should be opt-in in some options - and GPDR regarding hints. The airplane mode should be default - and the meta field |
for now i switched to another plugin that translate form contents with polylang in order to get the form done tomorrow. |
First of all - i forgot how to disable all styles of the plugin. Anyway.
I noticed that one stylesheet is not loaded locally which is a no-go nowadays and led customer-data flow to google per http-request(headers), which is to avoid - foremost without consent.
https://ajax.googleapis.com/ajax/libs/jqueryui/1.13.2/themes/smoothness/jquery-ui.min.css?ver=1.13.2
its loaded from here: https://github.com/aurovrata/cf7-grid-layout/blob/dev-v4.0/public/class-cf7-grid-layout-public.php#L245
It should be included in the Plugins Assets.
Updates should be easy possible with git-modules.
Example: https://www.line-dance.wien/anmeldung/
If you can hint me to the airplane mode thats noted arround that ui-loading stuff i would really be pleasured.
The text was updated successfully, but these errors were encountered: