Option(s) to opt out of all third party requests


(Andrew E) #1

Linking to third party JavaScript to embed YouTube videos, and fetching Gravatar images both share information to third parties about who is viewing the sites that link to these resources. Some sites administrators may wish to protect the privacy of their forum participants by disabling such third party requests that occur in the JavaScript front end and Ruby back end.

What do you think about creating admin options to disable specific third party requests, or allowing the admin to block them all entirely with a single option? I think it would be a useful feature. Thanks! :slightly_smiling_face:


(Rafael dos Santos Silva) #2

You can set avatar via the SSO payload so gravatar is never used (also check sso_overrides_avatar).

As for youtube, you can use onebox domains blacklist to block specific domains.