-
-
Notifications
You must be signed in to change notification settings - Fork 1.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Disable FLoC by default #1263
Comments
👍 Full support for this. |
Rich-Harris
added a commit
that referenced
this issue
Apr 28, 2021
Rich-Harris
pushed a commit
that referenced
this issue
Apr 29, 2021
* implement floc option - closes #1263 * changeset * docs
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Is your feature request related to a problem? Please describe.
FLoC is bad, and I think we should join the many organisations that treat it as a security/privacy threat and disable it by default.
Describe the solution you'd like
Add a new
kit.floc
config option that defaults tofalse
, and which must be set totrue
to opt in to FLoC:If
false
, the following header gets added to every response:Describe alternatives you've considered
SvelteKit is, among other things, a statement about what kind of web we want to exist. I think it's entirely appropriate to treat this as being within the framework's purview, as much as providing tools to mitigate against things like CSRF attacks.
How important is this feature to you?
In practical terms, not very. In terms of principle, I think it's important for the reasons given above.
The text was updated successfully, but these errors were encountered: