SAP Customer Data Cloud Positions

Advanced Cookie Reference

Skip to end of metadata
Go to start of metadata

 

Description

This table outlines the purpose of all publicly available cookies used by Gigya's services and any ramifications of them not being accepted by a user.

These cookies are used internally by the Gigya service WebSDK to function properly. Clients should never use the data stored by a Gigya cookie for their own business logic, as their content or function is liable to change without notice. Though removal of some cookies may not have an affect on end-user experience, for all Gigya services to function properly across all supported platforms and browsers, all cookies are required.
The Gigya services cookies listed here are only to enable functionality, and the data they store is not used for any other purpose or shared with third party systems.

Cookie NameProductPurposeData Collected or AccessedType (session or persistent)DomainStored lifetimeAccept/Decline Effect
apiDomain_<apiKey>SDKThe shared domain API calls for all sites in a group should be sent to.-Persistentgigya.com12 MonthsIf declined, SSO will not function.
gac_<APIKey>LoginUsed to trigger server initiated login.Contains ticket to perform the login withSessionSite domainIt is set by the implementation, and cleared when consumed by the Web SDKIf declined, login initiated by the server will not work.
_gig_APIProxy_enabledGeneralUsed to indicate whether to use APIProxy or not.1 or 0PersistentSite domain N/A
gig_bootstrap_<apiKey>SDKInternal cookie for the Web SDK-Persistentgigya.com12 MonthsIf declined, user may be intermittently logged out.
gig_canaryGeneralIndicates whether the client is using the canary version of the WebSDK.-PersistentSite domain1 year (only active ~3 days)If declined, the WebSDK canary version will not load. The regular version will load instead.
gig_canary_verGeneralThe version name of the WebSDK's canary version.-PersistentSite domain1 year (only active ~3 days)If declined, the WebSDK canary version will not load. The regular version will load instead.
_gig_comments_nicknameCommentsComments guest nickname.guest nicknamePersistentSite domain12 MonthsIf declined, guest username will not be saved after refresh.
_gig_comments_emailCommentsComments guest email.guest emailPersistentSite domain12 MonthsIf declined, guest email will not be saved after refresh.
_gig_comments_cb_<provider>CommentsRemembers if a provider checkbox was checked by the user.1/0PersistentSite domain12 MonthsIf declined, selected providers will not be saved after refresh.
_gig_comments_selected_<provider>CommentsRemembers if a provider checkbox was checked by the user.1/0PersistentSite domainN/AIf declined, selected providers will not be saved after refresh.
_gig_comments_selected_providersCommentsLast selected share providers.List of providers.PersistentSite domain12 MonthsIf declined, selected providers will not be saved after refresh.
_gig_comments_lockedCommentsRemembers if a guest user has posted at least one comment.-PersistentSite domain12 MonthsIf declined, guest users will be able to logout after posting comments.
_gig_comments_sortCommentsLast selected user sort.Sorting typePersistentSite domain12 MonthsIf declined, selected comments sorting will not be saved after refresh.
_gig_comments_is_guestCommentsIndicates that the user is commenting as guest user.Guest user indicationPersistentSite domain12 MonthsIf declined, the user selection to comment as guest will not be remembered.

gig-comments

(Local Storage)

CommentsIDs of comments flagged by the user.Comments IDs.PersistentSite domain-If declined, flagging could be done multiple times by the same user in commentsUI.
gig_debugGeneralUsed to trigger the debug UI.1PersistentSite domain2 secondIf declined will make debugging harder, but will not effect functionality.
_gig_dbgConsole_logGeneralUsed to trigger logging for debugging.1 or 0PersistentSite domain3 secondN/A
_gig_emailShareLast used email address in share (when sending email).email addressPersistentSite domain12 MonthsIf declined, email will not be saved after refresh.

_gig_gmidt

(Local Storage)

GeneralUser cookie.tokenPersistentGigya domain30minIf declined, can not do social login when 3rd Party Cookies are blocked.
gig_hasGmidSDKInternal cookie for the Web SDK-Persistentgigya.com12 MonthsIf declined, user may be intermittently logged out.
_gig_lluLoginLast login provider username for Login "Welcome back" screen.Last login provider usernamePersistentSite domain12 MonthsIf declined, the Welcome back screen will not show.
_gig_llpLoginLast login provider name for Login "Welcome back" screen.Last login provider namePersistent Site domain12 MonthsIf declined, the Welcome back screen will not show.
_gig_lt / glt_<APIKey>GeneralLogin Token for authentication.Gigya login tokenPersistent Site domainCan be configured in gigya siteIf declined, gigya login will fail.
gig_last_ver_<APIKey>SDKLast time of verification of the session when the site is using the verifyLoginInterval property of global CONF in order to trigger reverification.Last time of verifying the session.PersistentSite Domain12 MonthsIf declined, session verification will always trigger after a page refresh even if the configured verifyLoginInterval has not passed.
gig_loginToken_<APIKey>SSOGigya's Single Sign On (SSO) group login token.gigya login tokenPersistentgigya.com12 MonthsIf declined, SSO will fail.
gig_loginToken_<APIKey>_expSSOSSO expiration.login token expirationPersistentgigya.com12 MonthsN/A
gig_loginToken_<API_KEY>_revoked_tokensSSORevoked login tokens in an SSO group. In SSO scenarios, indicates to the Web SDK that the current token was revoked, so as to log the user out.-Persistentgigya.com12 MonthsRequired for Gigya services to function.
gig_loginToken_<APIKey>_sessionSSOIndicates if the group login token session is still activated.-Sessiongigya.com-N/A
gig_loginToken_<APIKey>_visitedSSOUsed to keep track of visited sites within the same SSO group.Comma separated list of API keysPersistentgigya.com12 MonthsIf declined, logout will fail to logout sites within the same SSO group.
_gig_shareUI_cb_<provider name>ShareRemembers if a provider checkbox was checked by the user.-PersistentSite domain12 MonthsIf declined, selected providers will not be saved after refresh.
_gig_shareUI_lastUIDShareLast logged in UID.gigya UIDPersistentSite domain12 MonthsIf declined, selected providers will not be saved after refresh.
_gigRefUid_<APIKey>LoyaltyLast referrer User ID.Gigya UIDPersistentSite domain12 MonthsIf declined, points will not be granted to the referrer.

_gig_ssoToken_<apikey>

(Local Storage)

GeneralSSO Token by API.tokenPersistentGigya domaindynamicIf declined, SSO between sites will not function.

_gig_ssoToken

(Local Storage)

GeneralSSO Token.tokenPersistentGigya domaindynamicIf declined, SSO will not function.
gig_togglesSDKThis value is sent to Gigya in order to identify toggles that the back-end behavior depends on to process the specified toggle.This cookie holds the base64 encoded value of the "toggles" object in the webSDK Configuration object. SessionAPI domain-Required for SDK defined toggles to function.
gig3pcGeneralRemembers if 3rd party cookies are blocked to avoid checking every time.1 or 0PersistentSite domain48 hrsN/A

gig3pctest

(when using bypassCookiePolicy in the globalConf)

GeneralA temp cookie used to check if 3rd party cookies are blocked."true"SessionSite domain1 secondN/A

gigyaSettings

( Local Storage)

ShareSaves user Share settings locally.Share settingsPersistentSite domain-If declined, client side settings will not be saved.
glnkLoginTicket for 2nd phase of login.Parameters of 1st phase of login.PersistentAPI domain-1 Days (Expiring the cookie)No affect on user experience.
gmidGeneralUser cookie.Used to identify the logged in user.PersistentAPI domain12 MonthsIf declined, the user cannot login to the system.

gmSettings

( Local Storage)

LoyaltyLocally stored Loyalty settings.Auto-sharing, isPrivate settingsPersistentSite domain-If declined, client side settings will not be saved.
gstLoginServer ticket for 2nd phase of login.parameters of 1st phase of loginPersistent 30 MinutesNo affect on user experience.
GSLM_<siteID>LoginSession magic cookie.Login validation - no dataSessionAPI domainNANo affect on user experience.
hasGmidSDKInternal cookie for the Web SDK-Persistentgigya.com13 MonthsIf declined, user may be intermittently logged out.

reactionState-down_<barId>

(Local Storage)

ReactionsPer Reaction and barID - The Last reactions that were made by the user.1 or 0 (per reaction) saved as string if 1PersistentSite domainforeverIf declined, user's previously selected Reactions will not be remembered or display on reload or return visit.
SAML_<SiteId>_<ExternalIdp.Name>SAML SPThis cookie is saved by SAML SP to manage the SAML session information and, specifically, the parameters needed for logout.SessionId and possible NameId received by the SP from the IdPPersistentGigya domain12 MonthsIf declined, SLO will not work and SP will not logout from IdP.
gltexp_<apikey>LoginLogin Token Expiration.datePersistentSite domaindynamicIf declined, session expiration will not function and the user will be considered 'Unauthorized'.
_gig_<id>_cbGeneralCallback for listener.callback namePersistentSite domain12 MonthsIf declined, some sharing actions will not function.

__gigAPIAdapterSettings_<apikey>_<build>

(Local Storage)

GeneralWebSDk settings.internal calculated settingsPersistentSite domainforeverRecalculating settings.

gmid

(Local Storage)

GeneralUser cookie.tokenPersistentGigya domainforeverIf declined, user will lose valid session when 3rd Party Cookies are blocked.
ua_<apikey>LoginCOPPA (under age).1 or 0PersistentSite domain24 hoursIf declined, user's choice will not be remembered.
ucidGeneral

Unique computer identifier used for generating reports, and used by the Web SDK to get saved response.

A unique IDPersistentAPI domain13 Months

If declined, in certain flows Gigya may not function.

Unable to render {include} The included page could not be found.

ucid

(Local Storage)

GeneralUnique computer identifier for unique user reporting purposes.tokenPersistentGigya domainforeverIf declined, will not get reports correctly.

 

Developer's Guide Specific Cookies

This Developers Guide uses 2 additional cookies from the standard Gigya cookies described in the Advanced Cookie Reference.

They are required for the site to function properly and are as follows:

  • gig_codeExampleGenPrefs - Allows the Developer's Guide to remember your last viewed language for the built-in API Sample Requests code examples so that they are always displayed in your previously viewed programming language by default.
  • gigyaCookieConsentGranted - This cookie is deprecated and can be removed from your browser. Allows us to know that you accepted the Gigya Cookie Policy that was shown when you first arrived at the site. This has been replaced with TrustArc cookie management.




Unable to render {include} The included page could not be found.