change: [M3-9159] - Enable Pendo based on OneTrust cookie consent

[mjac0bs]

Description 📝

This PR enables the Pendo analytics script based on the OneTrust cookie consent granted by the user in their cookie preferences. If users disable performance cookies, the Pendo script will not load.

Once we release this change to production, we should be able to change a setting in our Pendo app subscription that has disabled cookies and client side storage use. The Login team needs cookies enabled on our subscription to allow for journey tracking between the anonymous users on Login and Cloud Manager's users.

Note

Confirming one thing with MADS about OneTrust and default opt-ins vs. opt-outs by geolocation (to make sure I don't have to handle anything else here) before I merge.
✅ Confirmed: For non GDPR countries, the user is opted in via OneTrust unless they choose to opt out. For GDPR, they get the option to choose in OneTrust and have to opt in as first time visitor.

Changes 🔄

• Updates the usePendo.js hook to check for consent enablement before loading the script
• Creates new utility functions (getCookie, checkOptanonConsent) to handle this in analytics/utils.ts
• Adds unit test coverage for new utils in analytics/utils.test.ts

Target release date 🗓️

2/11/25

How to test 🧪

Verification steps

(How to verify changes)

• Check out this PR and go to http://localhost:3000

• Log out of whatever account you're in. At login.linode.com, select Cookie Preferences at the bottom of the screen

• Disable the Performance Cookies setting by toggling it off

• In your code editor, go to L80 of usePendo.js and change the condition for const hasConsentEnabled = APP_ROOT.includes('localhost') to add a !. In this PR, we want to confirm that the OneTrust cookie works locally, but normally we don't want to have to do these steps to enable Pendo for local development.

• Open the browser dev tools and go to Application > Cookies and view the table of cookies

• Find the OptanonConsent cookie and copy its value to your clipboard. Be sure to uncheck the Show URL decoded option
  

• Add a new OptanonConsent cookie for localhost for testing purposes. We can't read cookies with a different domain with document.cookie. To add a new cookie, click an empty cell at the bottom of the table. Name it OptanonConsent and copy the value from the linode.com cookie into the localhost OptanonConsent cookie.

• If you want to confirm that OptanonConsent is now being returned in document.cookie, use the browser console to log the value for document.cookie.

• Refresh the page and confirm that Pendo has respected your cookie setting and NOT loaded, which you can do via any of the following:

  • Check the page HTML to confirm there is no Pendo script in the <head> tag (it's the script with content.psp.cloud.linode.com)
  • Filter network requests on psp. and confirm there are no requests
    
  • In the browser console, log pendo.validateEnvironment() and confirm the command fails
    

• Repeat the steps above, but with an Enabled Performance Cookie setting to confirm Pendo is loaded and sending data

  • We can test this by editing the localhost OptanonConsent cookie value so that C0002%3A0 is C0002%3A1. C0002 is the 'Performance Cookie' group; 0 is disabled, 1 is enabled
    
    

• Ensure tests pass:

yarn test analytics/utils

Author Checklists

As an Author, to speed up the review process, I considered 🤔

👀 Doing a self review
❔ Our contribution guidelines
🤏 Splitting feature into small PRs
➕ Adding a changeset
🧪 Providing/improving test coverage
🔐 Removing all sensitive information from the code and PR description
🚩 Using a feature flag to protect the release
👣 Providing comprehensive reproduction steps
📑 Providing or updating our documentation
🕛 Scheduling a pair reviewing session
📱 Providing mobile support
♿ Providing accessibility support

• I have read and considered all applicable items listed above.

As an Author, before moving this PR from Draft to Open, I confirmed ✅

• All unit tests are passing
• TypeScript compilation succeeded without errors
• Code passes all linting rules

[github-actions]

Coverage Report: ✅
Base Coverage: 79.07%
Current Coverage: 79.08%

[coliu-akamai]

ty for the instructions to test - super helpful!
✅ performance cookies disabled - confirmed pendo has not loaded (all three methods ✅)
✅ performance cookies enabled - confirmed pendo has loaded (all three methods ✅)
✅ yarn test analytics/utils

some optional nitpicks below

[linode-gh-bot]

Cloud Manager UI test results

🎉 482 passing tests on test run #7 ↗︎

❌ Failing	✅ Passing	↪️ Skipped	🕐 Duration
0 Failing	482 Passing	2 Skipped	97m 2s

[cypress]

Cloud Manager E2E    Run #7140

Run Properties:   Passed #7140  •  bbd35547df: change: [M3-9159] - Enable Pendo based on OneTrust cookie consent (#11564)

Project	Cloud Manager E2E
Branch Review	develop
Run status	Passed #7140
Run duration	30m 09s
Commit	bbd35547df: change: [M3-9159] - Enable Pendo based on OneTrust cookie consent (#11564)
Committer	Mariah Jacobs
View all properties for this run ↗︎

---

Test results
Failures	0
Flaky	4
Pending	2
Skipped	0
Passing	488
View all changes introduced in this branch ↗︎