Expand my Community achievements bar.

Join us for the next Community Q&A Coffee Break on Tuesday April 23, 2024 with Eric Matisoff, Principal Evangelist, Analytics & Data Science, who will join us to discuss all the big news and announcements from Summit 2024!
Register Here

Adobe Analytics Encode Cookies

Avatar

bagust36801814
Level 1

12/7/17

Problem

Our corporate client just recently added Adobe Analytics through Adobe Marketing Cloud to track their website performance.

The problem is, the required javascript include add several cookie that prints (almost) plain url into the cookie. This triggers several rules in our Web Application Firewall (WAF) that end up making the site unusable. Example Cookie:

Where s_ppv is the cookie name. Notice the double dash in red between the word ads and grabbing. That item triggers our WAF as it commonly used SQL Injection attack.

Suggested Solution

Encode the cookie values into base64 or somekind encoding that only allows alphanumeric character without allowing any special character. It would provide better compatibility on some CDN and WAF.

Note:

Please correct me if i am wrong.

Thank you.

1 Comment

Avatar

Gigazelle
Employee Advisor

12/8/17

Thanks so much for your feedback! This is actually something you should be able to directly control.

The s_ppv cookie is directly related to the getPercentPageViewed plugin, meaning it is not part of a standard Adobe Analytics implementation. If this plugin is not meeting your needs, you are welcome to either alter the JavaScript so it omits the double dashes, or you may remove the plugin altogether so the s_ppv cookie is not set.

Since this is an enhancement that relates more to JavaScript that it does Adobe Analytics, I'm going to go ahead and set the status to archived. Comments to continue the discussion are more than welcome though!

Reply