cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Phasing out of 3rd party cookies impact on RUM

Weilin1
Contributor

Hi, 

With respect to Google phasing out 3rd parties cookies, how would this impact Dynatrace RUM?

Understand from the documentation that that the following cookies are  all first-party cookies:

Cookie Structure Expires Max size Purpose

dtCookie1

v4 session state:
v_4_key1_value1_key2_value2_keyN_valueN

Possible keys include:

  • srv

  • sn

  • mvisitor

  • msn

  • perc

  • ol

  • mul

  • app:<appID>

v4 example:
v_4_srv_7_sn_4D3133F359A76AB05AAF39691696858A

Session

No set limitation, but usually less than 100 B

Tracks a visit across multiple requests.

dtLatC

<numeric value>

Session

5 B

Measures server latency for performance monitoring.

dtPC

<serverID>$<randomValue>_<currentMillis>v<randomValue>e<eventCount>

Session

58 B

Required to identify proper endpoints for beacon transmission; includes session ID for correlation.

dtSa

<URL-encoded action name>

Session

Max number of characters in the URL

Serves as an intermediate storage for page-spanning actions. This cookie is used to save user action names, such as Click on Login, across different pages. This is required because page loads result in JavaScript code restart, so all contextual information must be stored in cookies.

dtValidationCookie

The dTValidationCookieValue string.

Deleted after a few milliseconds; no expiry date set

Length of dTValidationCookieValue string, that is 23

Used to determine the top-level domain.

dtDisabled

<true>

Session

4 B

Determines if the RUM JavaScript should be deactivated due to cost and traffic control or overload prevention.

rxVisitor

<visitorID>

Session or permanent2

45 B

Contains the visitor ID to correlate sessions.

rxvt

<timestamp>|<timestamp>

Session

27 B

Specifies the session timeout.

 

But how are these cookies being injected such that they are first party cookies?

  • Sever-side injection or domain matching?

 

In other post, one of the replies stated that "actually dtCookie is injected on server-side and its injection is unrelated to the presence of the RUM script".

If so are the other cookies injected on server-side too?

Based on another comment is seems to suggest that if the RUM script is not loaded, then only dtCookie is injected. This also suggest that the other cookies are injected by the RUM script - would this make them 3rd party cookies?

And also does this server-side injection require OneAgent? If i am using agentless monitoring, are dtCookie still injected on server-side?

 

Sorry for the list of questions, & thanks in advance.

5 REPLIES 5

look at the below portion in the beginning of the file `ruxitagentjs_xxxxxxxxxxxxxxxx.js` `.concat("__dtCookie","=")` then it's looks injected in the client side

 /*
 Copyright and licenses see https://www.dynatrace.com/company/trust-center/customers/reports/ */
(function(){function Ga(){document.cookie="".concat("__dTCookie","=").concat("1",";SameSite=Lax");var Pa=-1!==document.cookie.indexOf("__dTCookie");document.cookie="".concat("__dTCookie","=").concat("1","; expires=Thu, 01-Jan-1970 00:00:01 GMT");

 

I wish this help you.

Certified Dynatrace Professional | Certified Dynatrace Services - Observability | Dynatrace Partner yourcompass.ca

Thanks for the response, i see so dtCookie is client side? 

Even so, it is still 1st party cookie right? hence Dynatrace RUM is not affected in anyway by Google phasing out on 3rd party cookies?

Thanks.

it depends on type of injection, if you're using RUM auto-injection mostly it wouldn't affected by Google because ruxitagent uses the same domain name of your web app and send data back to the same Origin, otherwise if you using manual injection or your app data will be sent using CORS which means you'll using different domain for specific activegate then it's mostly would be affected by Google.

in this case you've to check the rules and policies of Google

Certified Dynatrace Professional | Certified Dynatrace Services - Observability | Dynatrace Partner yourcompass.ca

Just to clarify further by RUM auto-injection you are referring to OneAgent and by manual injection you are referring to agentless monitoring?

Thanks. 

yes exactly I'm referring to agentless monitoring when mentioned manual injection, but take in consideration regardless what you're using for injection (auto or manual) the origin of the ruxitagent.js is it using the same domain different domain this is the main idea.

I hope this notes be useful for you.

Certified Dynatrace Professional | Certified Dynatrace Services - Observability | Dynatrace Partner yourcompass.ca

Featured Posts