Adobe Analytics

bagust36801814 · 12/7/17

Problem

Our corporate client just recently added Adobe Analytics through Adobe Marketing Cloud to track their website performance.

The problem is, the required javascript include add several cookie that prints (almost) plain url into the cookie. This triggers several rules in our Web Application Firewall (WAF) that end up making the site unusable. Example Cookie:

Where s_ppv is the cookie name. Notice the double dash in red between the word ads and grabbing. That item triggers our WAF as it commonly used SQL Injection attack.

Suggested Solution

Encode the cookie values into base64 or somekind encoding that only allows alphanumeric character without allowing any special character. It would provide better compatibility on some CDN and WAF.

Note:

Please correct me if i am wrong.

Thank you.

Gigazelle · 12/8/17

Thanks so much for your feedback! This is actually something you should be able to directly control.

The s_ppv cookie is directly related to the getPercentPageViewed plugin, meaning it is not part of a standard Adobe Analytics implementation. If this plugin is not meeting your needs, you are welcome to either alter the JavaScript so it omits the double dashes, or you may remove the plugin altogether so the s_ppv cookie is not set.

Since this is an enhancement that relates more to JavaScript that it does Adobe Analytics, I'm going to go ahead and set the status to archived. Comments to continue the discussion are more than welcome though!

Adobe Analytics

Adobe Analytics Encode Cookies

Problem

Suggested Solution

Learn

Documentation

Community

Support

Resources

Adobe account

Adobe