package gdpr import ( "context" "github.com/prebid/go-gdpr/api" "github.com/prebid/go-gdpr/consentconstants" tcf2 "github.com/prebid/go-gdpr/vendorconsent/tcf2" "github.com/prebid/prebid-server/v4/metrics" "github.com/prebid/prebid-server/v4/openrtb_ext" ) const noBidder openrtb_ext.BidderName = "" // permissionsImpl contains global and request-specific GDPR config data and is used to determine // whether various cookie sync and auction activities are permitted for a request // permissionsImpl implements the Permissions interface type permissionsImpl struct { // global fetchVendorList VendorListFetcher gdprDefaultValue string hostVendorID int metrics metrics.MetricsEngine nonStandardPublishers map[string]struct{} purposeEnforcerBuilder PurposeEnforcerBuilder validGVLVendorIDs *LiveGVLVendorIDs vendorIDs map[openrtb_ext.BidderName]uint16 // request-specific aliasGVLIDs map[string]uint16 cfg TCF2ConfigReader consent string gdprSignal Signal publisherID string } // HostCookiesAllowed determines whether the host is allowed to set cookies on the user's device func (p *permissionsImpl) HostCookiesAllowed(ctx context.Context) (bool, error) { if p.gdprSignal != SignalYes { return true, nil } return p.allowSync(ctx, uint16(p.hostVendorID), noBidder, false) } // BidderSyncAllowed determines whether a given bidder is allowed to perform a cookie sync func (p *permissionsImpl) BidderSyncAllowed(ctx context.Context, bidder openrtb_ext.BidderName) (bool, error) { if p.gdprSignal != SignalYes { return true, nil } id, ok := p.vendorIDs[bidder] if ok && p.isValidVendorID(id) { vendorExceptions := p.cfg.PurposeVendorExceptions(consentconstants.Purpose(1)) _, vendorException := vendorExceptions[string(bidder)] return p.allowSync(ctx, id, bidder, vendorException) } return false, nil } // AuctionActivitiesAllowed determines whether auction activities are permitted for a given bidder func (p *permissionsImpl) AuctionActivitiesAllowed(ctx context.Context, bidderCoreName openrtb_ext.BidderName, bidder openrtb_ext.BidderName) AuctionPermissions { if _, ok := p.nonStandardPublishers[p.publisherID]; ok { return AllowAll } if p.gdprSignal != SignalYes { return AllowAll } if p.consent == "" { return p.defaultPermissions() } pc, err := parseConsent(p.consent) if err != nil { return p.defaultPermissions() } vendorID, _ := p.resolveVendorID(bidderCoreName, bidder) vendor, err := p.getVendor(ctx, vendorID, *pc) if err != nil { return p.defaultPermissions() } vendorInfo := VendorInfo{vendorID: vendorID, vendor: vendor} return AuctionPermissions{ AllowBidRequest: p.allowBidRequest(bidderCoreName, pc.consentMeta, vendorInfo), PassGeo: p.allowGeo(bidderCoreName, pc.consentMeta, vendor), PassID: p.allowID(bidderCoreName, pc.consentMeta, vendorInfo), } } // defaultPermissions returns a permissions object that denies passing user IDs while // allowing passing geo information and sending bid requests based on whether purpose 2 // and feature one are enforced respectively // if the consent string is empty or malformed we should use the default permissions func (p *permissionsImpl) defaultPermissions() AuctionPermissions { perms := AuctionPermissions{} if !p.cfg.PurposeEnforced(consentconstants.Purpose(2)) { perms.AllowBidRequest = true } if !p.cfg.FeatureOneEnforced() { perms.PassGeo = true } return perms } // resolveVendorID gets the vendor ID for the specified bidder from either the alias GVL IDs // provided in the request or from the bidder configs loaded at startup. If the resolved ID // is not present in the latest Global Vendor List, it returns 0 and false. func (p *permissionsImpl) resolveVendorID(bidderCoreName openrtb_ext.BidderName, bidder openrtb_ext.BidderName) (id uint16, ok bool) { if id, ok = p.aliasGVLIDs[string(bidder)]; ok { if !p.isValidVendorID(id) { return 0, false } return id, ok } id, ok = p.vendorIDs[bidderCoreName] if ok && !p.isValidVendorID(id) { return 0, false } return id, ok } // isValidVendorID checks whether the given vendor ID exists in the latest Global Vendor List. // If the valid set is nil (e.g. the GVL fetch failed), all IDs are considered valid // as a safe fallback. func (p *permissionsImpl) isValidVendorID(id uint16) bool { if p.validGVLVendorIDs == nil { return true } return p.validGVLVendorIDs.Contains(id) } // allowSync computes cookie sync activity legal basis for a given bidder using the enforcement // algorithms selected by the purpose enforcer builder func (p *permissionsImpl) allowSync(ctx context.Context, vendorID uint16, bidder openrtb_ext.BidderName, vendorException bool) (bool, error) { if p.consent == "" { return false, nil } pc, err := parseConsent(p.consent) if err != nil { return false, err } vendor, err := p.getVendor(ctx, vendorID, *pc) if err != nil { return false, nil } vendorInfo := VendorInfo{vendorID: vendorID, vendor: vendor} if !p.cfg.PurposeEnforced(consentconstants.Purpose(1)) { return true, nil } if p.cfg.PurposeOneTreatmentEnabled() && pc.consentMeta.PurposeOneTreatment() { return p.cfg.PurposeOneTreatmentAccessAllowed(), nil } purpose := consentconstants.Purpose(1) enforcer := p.purposeEnforcerBuilder(purpose, string(bidder)) if enforcer.LegalBasis(vendorInfo, string(bidder), pc.consentMeta, Overrides{blockVendorExceptions: !vendorException}) { return true, nil } return false, nil } // allowBidRequest computes legal basis for a given bidder using the enforcement algorithms selected // by the purpose enforcer builder func (p *permissionsImpl) allowBidRequest(bidder openrtb_ext.BidderName, consentMeta tcf2.ConsentMetadata, vendorInfo VendorInfo) bool { enforcer := p.purposeEnforcerBuilder(consentconstants.Purpose(2), string(bidder)) overrides := Overrides{} if _, ok := enforcer.(*BasicEnforcement); ok { overrides.allowLITransparency = true } return enforcer.LegalBasis(vendorInfo, string(bidder), consentMeta, overrides) } // allowGeo computes legal basis for a given bidder using the configs, consent and GVL pertaining to // feature one func (p *permissionsImpl) allowGeo(bidder openrtb_ext.BidderName, consentMeta tcf2.ConsentMetadata, vendor api.Vendor) bool { if !p.cfg.FeatureOneEnforced() { return true } if p.cfg.FeatureOneVendorException(bidder) { return true } basicEnforcementVendors := p.cfg.BasicEnforcementVendors() _, weakVendorEnforcement := basicEnforcementVendors[string(bidder)] return consentMeta.SpecialFeatureOptIn(1) && ((vendor != nil && vendor.SpecialFeature(1)) || weakVendorEnforcement) } // allowID computes the pass user ID activity legal basis for a given bidder using the enforcement algorithms // selected by the purpose enforcer builder. For the user ID activity, the selected enforcement algorithm must // always assume we are enforcing the purpose. // If the purpose for which we are computing legal basis is purpose 2, the algorithm should allow LI transparency. func (p *permissionsImpl) allowID(bidder openrtb_ext.BidderName, consentMeta tcf2.ConsentMetadata, vendorInfo VendorInfo) bool { for i := 2; i <= 10; i++ { purpose := consentconstants.Purpose(i) enforcer := p.purposeEnforcerBuilder(purpose, string(bidder)) overrides := Overrides{enforcePurpose: true, enforceVendors: true} if _, ok := enforcer.(*BasicEnforcement); ok && purpose == consentconstants.Purpose(2) { overrides.allowLITransparency = true } if enforcer.LegalBasis(vendorInfo, string(bidder), consentMeta, overrides) { return true } } return false } // getVendor retrieves the GVL vendor information for a particular bidder func (p *permissionsImpl) getVendor(ctx context.Context, vendorID uint16, pc parsedConsent) (api.Vendor, error) { vendorList, err := p.fetchVendorList(ctx, pc.specVersion, pc.listVersion, p.metrics) if err != nil { return nil, err } return vendorList.Vendor(vendorID), nil } // AllowHostCookies represents a GDPR permissions policy with host cookie syncing always allowed type AllowHostCookies struct { *permissionsImpl } // HostCookiesAllowed always returns true func (p *AllowHostCookies) HostCookiesAllowed(ctx context.Context) (bool, error) { return true, nil } // Exporting to allow for easy test setups type AlwaysAllow struct{} func (a AlwaysAllow) HostCookiesAllowed(ctx context.Context) (bool, error) { return true, nil } func (a AlwaysAllow) BidderSyncAllowed(ctx context.Context, bidder openrtb_ext.BidderName) (bool, error) { return true, nil } func (a AlwaysAllow) AuctionActivitiesAllowed(ctx context.Context, bidderCoreName openrtb_ext.BidderName, bidder openrtb_ext.BidderName) AuctionPermissions { return AllowAll }