Advanced Cookie Reference

Skip to end of metadata
Go to start of metadata

 

Description

This table outlines the purpose of all publicly available cookies used by Gigya's services and any ramifications of them not being accepted by a user.

These cookies are used internally by the Gigya service to function properly. Clients should never use the data stored by a Gigya cookie for their own business logic, as their content or function is liable to change without notice. Though removal of some cookies may not have an affect on end-user experience, for all Gigya services to function properly across all supported platforms and browsers, all cookies are required.

Cookie NameProductPurposeData Collected or AccessedType (session or persistent)DomainStored lifetimeAccept/Decline Effect
apiDomain_<apiKey>SDKThe shared domain API calls for all sites in a group should be sent to.-Persistentgigya.com15 YearsIf declined, SSO will not function.
_gig_lluLoginLast login provider username for Login "Welcome back" screen.Last login provider usernamePersistentSite domain15 YearsIf declined, the Welcome back screen will not show.
_gig_llpLoginLast login provider name for Login "Welcome back" screen.Last login provider namePersistent  Site domain15 YearsIf declined, the Welcome back screen will not show.
_gig_lt / glt_<APIKey>GeneralLogin Token for authentication.Gigya login tokenPersistent  Site domainCan be configured in gigya siteIf declined, gigya login will fail.
_gig_comments_nicknameCommentsComments guest nickname.guest nicknamePersistent Site domain15 YearsIf declined, guest username will not be saved after refresh.
_gig_comments_emailCommentsComments guest email.guest emailPersistent Site domain15 YearsIf declined, guest email will not be saved after refresh.
_gig_comments_cb_<provider>CommentsRemembers if a provider checkbox was checked by the user.1/0Persistent Site domain15 YearsIf declined, selected providers will not be saved after refresh.
_gig_comments_selected_<provider>CommentsRemembers if a provider checkbox was checked by the user.1/0Persistent Site domainN/AIf declined, selected providers will not be saved after refresh.
_gig_comments_lockedCommentsRemembers if a guest user has posted at least one comment.-Persistent Site domain15 YearsIf declined, guest users will be able to logout after posting comments.
_gig_emailShareLast used email address in share (when sending email).email addressPersistent Site domain15 YearsIf declined, email will not be saved after refresh.
_gig_shareUI_cb_<provider name>ShareRemembers if a provider checkbox was checked by the user.-Persistent Site domain15 YearsIf declined, selected providers will not be saved after refresh.
_gig_shareUI_lastUIDShareLast logged in UID.gigya UIDPersistent Site domain15 YearsIf declined, selected providers will not be saved after refresh.
gig_hasGmidSDKInternal cookie for the Web SDK-Persistentgigya.com15 YearsIf declined, user may be intermittently logged out.
hasGmidSDKInternal cookie for the Web SDK-Persistentgigya.com13 MonthsIf declined, user may be intermittently logged out.
gig_loginToken_<APIKey>SSOGigya's Single Sign On (SSO) group login token.gigya login tokenPersistentgigya.com15 YearsIf declined, SSO will fail.
gig_loginToken_<APIKey>_visitedSSOUsed to keep track of visited sites within the same SSO group.Comma seperated list of API keysPersistentgigya.com15 YearsIf declined, logout will fail to logout sites within the same SSO group.
gig_loginToken_<APIKey>_expSSOSSO expiration.login token expirationPersistentgigya.com15 YearsN/A
gig_loginToken_<APIKey>_sessionSSOIndicates if the group login token session is still activated.-Sessiongigya.com-N/A
gig_loginToken_<API_KEY>_revoked_tokensSSORevoked login tokens in an SSO group. In SSO scenarios, indicates to the Web SDK that the current token was revoked, so as to log the user out.-Persistentgigya.com15 yearsRequired for Gigya services to function.

gmSettings

( Local Storage)

LoyaltyLocally stored Loyalty settings.Auto-sharing, isPrivate settingsPersistent Site domain-If declined, client side settings will not be saved.

gig-comments

(Local Storage)

CommentsIDs of comments flagged by the user.Comments IDsPersistent Site domain-If declined, flagging could be done multiple times by the same user in commentsUI.

gigyaSettings

( Local Storage)

ShareSaves user Share settings locally.Share settingsPersistent Site domain-If declined, client side settings will not be saved.
gstLoginServer ticket for 2nd phase of login.parameters of 1st phase of loginPersistent 30 MinutesNo affect on user experience.
ucidGeneral

Unique computer identifier used for generating reports, and used by the Web SDK to get saved response.

A unique IDPersistentAPI domain13 Months

If declined, in certain flows Gigya may not function.

glnkLoginTicket for 2nd phase of login.parameters of 1st phase of loginPersistentAPI domain-1 Days (Expiring the cookie)No affect on user experience.
gmidGeneralUser cookie.Used to identify the logged in userPersistentAPI domain10+ YearsIf declined, the user cannot login to the system.
GSLM_<siteID>LoginSession magic cookie.Login validation - no dataSessionAPI domainNANo affect on user experience.
_gig_comments_selected_providersCommentsLast selected share providers.List of providersPersistent Site domain15 YearsIf declined, selected providers will not be saved after refresh.
_gig_comments_sortCommentsLast selected user sort.Sorting typePersistent Site domain15 YearsIf declined, selected comments sorting will not be saved after refresh.
_gig_comments_is_guestCommentsIndicates that the user is commenting as guest user.Guest user indicationPersistent Site domain15 YearsIf declined, the user selection to comment as guest will not be remembered.
_gigRefUid_<APIKey>LoyaltyLast referrer User ID.Gigya UIDPersistent Site domain15 YearsIf declined, points will not be granted to the referrer.
gig3pcGeneralRemembers if 3rd party cookies are blocked to avoid checking every time.1 or 0Persistent Site domain48 hrsN/A

gig3pctest

(when using bypassCookiePolicy in the globalConf)

GeneralA temp cookie used to check if 3rd party cookies are blocked."true"Session Site domain1 secondN/A
gig_debugGeneralUsed to trigger the debug UI.1Persistent Site domain2 secondIf declined will make debugging harder, but will not effect functionality.
_gig_dbgConsole_logGeneralUsed to trigger logging for debugging.1 or 0Persistent Site domain3 secondN/A
_gig_APIProxy_enabledGeneralUsed to indicate whether to use APIProxy or not.1 or 0Persistent Site domain N/A
gac_<APIKey>LoginUsed to trigger server initiated login.Contains ticket to perform the login withSession Site domainIt is set by the implementation, and cleared when consumed by the Web SDKIf declined, login initiated by the server will not work.
SAML_<SiteId>_<ExternalIdp.Name>SAML SPThis cookie is saved by SAML SP to manage the SAML session information and, specifically, the parameters needed for logout.SessionId and possible NameId received by the SP from the IdPPersistentGigya domain10 yearsIf declined, SLO will not work and SP will not logout from IdP.
gltexp_<apikey>LoginLogin Token Expiration.datePersistent Site domaindynamicIf declined, session expiration will not function and the user will be considered 'Unauthorized'.
_gig_<id>_cbGeneralCallback for listener.callback namePersistent Site domain10 yearsIf declined, some sharing actions will not function.
ua_<apikey>LoginCOPPA (under age).1 or 0Persistent Site domain24 hoursIf declined, user's choice will not be remembered.

_gig_ssoToken

(Local Storage)

GeneralSSO Token.tokenPersistentGigya domaindynamicIf declined, SSO will not function.

__gigAPIAdapterSettings_<apikey>_<build>

(Local Storage)

GeneralWebSDk settings.internal calculated settingsPersistent Site domainforeverRecalculating settings.

gmid

(Local Storage)

GeneralUser cookie.tokenPersistentGigya domainforeverIf declined, user will lose valid session when 3rd Party Cookies are blocked.

ucid

(Local Storage)

GeneralUnique computer identifier for unique user reporting purposes.tokenPersistentGigya domainforeverIf declined, will not get reports correctly.

_gig_ssoToken_<apikey>

(Local Storage)

GeneralSSO Token by API.tokenPersistentGigya domaindynamicIf declined, SSO between sites will not function.

_gig_gmidt

(Local Storage)

GeneralUser cookie.tokenPersistentGigya domain30minIf declined, can not do social login when 3rd Party Cookies are blocked.

reactionState-down_<barId>

(Local Storage)

ReactionsPer Reaction and barID - The Last reactions that were made by the user.1 or 0 (per reaction) saved as string if 1Persistent Site domainforeverIf declined, user's previously selected Reactions will not be remembered or display on reload or return visit.
gig_canaryGeneralIndicates whether the client is using the canary version of the WebSDK.-PersistentSite domain1 year (only active ~3 days)If declined, the WebSDK canary version will not load. The regular version will load instead.
gig_canary_verGeneralThe version name of the WebSDK's canary version.-PersistentSite domain1 year (only active ~3 days)If declined, the WebSDK canary version will not load. The regular version will load instead.