Security News
Namecheap Takes Down Polyfill.io Service Following Supply Chain Attack
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
react-cookie-kit
Advanced tools
Readme
Published as Open Source under Apache-2.0 License https://www.npmjs.com/package/react-cookie-kit
The React Cookie Kit is special purpose build of the XcooBee Cookie Kit (XCK) Cookie Consent Management library for use in ReactJS environments. The React Cookie Kit is not just an information overlay. It is an active cookie and consent manager for your site. Most current cookie GDPR notices for websites are just that: Overlays that display information but do not actively manage cookie creation and life-cycles. You are still responsible for handling cookies and fingerprinting correctly. In contrast to this, the react cookie kit is a true cookie-consent and life-cycle manager. It will help you implement the premises of the GDPR and European e-directive correctly.
The objective of the XcooBee Cookie Kit (XCK) is to enable websites to manage their Cookie consent more effectively and with less annoyance to their users. The XCK can work in concert with the XcooBee network to improve overall management for users and businesses but that is not required. When the XCK works independently of XcooBee some management functionality will not be available.
The XCK makes it easy to plugin cookie consent into your website. It handles all user interaction to obtain consent and lets the website know which cookies can be used for each users while they visit your website. Similarly, your website can now be informed when users change their consent even when they are not visiting it.
THe XCK is one of the most transparent and frictionless ways to manage cookies on your site. It will not pop-up, in, or otherwise hinder the user experience when it is not needed. Yet, at the same time, it provides full compliance with European e-directives and related GDPR rules.
Website owners can easily react to data-requests and report on privacy related requests if needed via the XcooBee network.
The XCK does not require a XcooBee connection to work for your website. You will still have access to the majority of user consent gathering but will not have central insight and consent management.
The XCK is responsive and will adjust easily to different screens including mobile uses.
Main components and further documentation:
You need to add the cookie kit as dependency in your project
npm install react-cookie-kit --save
Inside your code you need to import the cookie kit
import CookieKit from 'react-cookie-kit';
We also recommend that you import the style sheet
import 'react-cookie-kit/dist/xck-react.css';
inside your render() method you can, then, use the cookie kit with all the available options:
<CookieKit
cssAutoLoad={false}
cookieHandler={this.onCookieConsentsChange}
privacyUrl="https://mysite.com/privacy"
requestDataTypes={['advertising', 'application', 'statistics', 'usage']}
termsUrl="https://mysite.com/terms"
textMessage={{
"de-de": "Die Beschreibung. Wir benutzen Cookies.",
"en-us": "The description. We use Cookies.",
"es-419": "La descripción. Nous utilisons des cookies.",
"fr-fr": "La description. Usamos cookies.",
}}
/>
For further information on the type of available options and their use please consult the general documentation under Full Parameter Reference.
A ReactJS example app is available in zip format for you to use in the example directory of this package or online:
FAQs
GDPR / CCPA Easy Cookie, Script, Do-Not-Sell, and Fingerprint Consent Management for Websites.
We found that react-cookie-kit demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 2 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Polyfill.io has been serving malware for months via its CDN, after the project's open source maintainer sold the service to a company based in China.
Security News
OpenSSF is warning open source maintainers to stay vigilant against reputation farming on GitHub, where users artificially inflate their status by manipulating interactions on closed issues and PRs.
Security News
A JavaScript library maintainer is under fire after merging a controversial PR to support legacy versions of Node.js.