Allow Third-party Cookies for Specific Websites

felagund

@Pathduck Oops. I had a long list of sites associated with Google in the allowed third party cookies - maybe I should not have deleted that. But so far only logging to Tinder with Google broke (in a private window, it still works, so it must be something with my setting. No idea what though, tried to delete all cookies).

Pathduck

@felagund Since you already have a G account and use it to log in to other sites, you implicitly trust it, so you might as well add all Google subdomains.

I have [*.]google.com and [*.]googleapis.com under allowed for third-party. I think the googleapis domain is needed for stuff like videos on GDrive.

felagund

@Pathduck said in Allow Third-party Cookies for Specific Websites:

@felagund Since you already have a G account and use it to log in to other sites, you implicitly trust it, so you might as well add all Google subdomains.

I have [*.]google.com and [*.]googleapis.com under allowed for third-party. I think the googleapis domain is needed for stuff like videos on GDrive.

Well, not that I entirely trust Google, but convenience beats my concerns :-/. Thanks!

dude99

@felagund said in Allow Third-party Cookies for Specific Websites:

but convenience beats my concerns

And that's exactly what Google wanted, it's call Dark Pattern Design. Unfortunately 99.99% of people fall for it, even IT professionals will give up privacy to avoid little inconveniences created by predator tech giant like Google. LOL

Please vote for related request:
Cookies in Use dialog need Allow (Whitelist) & Clear on exit buttons under Allowed tab

thejesse

This works for me on chrome, but when I set this up for [*.]mendeley.com on vivaldi I still get an error from the mendeley web importer popup that I need to enable 3rd party cookies for mendeley.com. Any thoughts?

Pathduck

@thejesse I tried with creating an account on the site and uploading a file, no problems, and I block 3rd party cookies.

Are you by any chance using the "plugin" they tell you to use? I saw it mentioned next to the uploader. Is it an extension or a plugin (few plugins actually work these days)?

The thing to understand about the cookie domain overrides is that it specifies the domain you want to allow 3rd party cookies from. Not the domain you're currently at. So for instance, if the Mendeley site required cookies from google.com to work, you'd need to add Google to the Allow list, not the Mendeley domain. Makes sense?

I saw no 3rd party cookies in the Blocked list when I tested upload, so maybe this is caused by a bug in the plugin/extension they tell you to use?

ianmacd

I'd like to add my voice to the call for this feature.

Coming from Brave, being able to toggle third-party cookies on a per site basis is pretty much the only feature that I miss in Vivaldi. Having to globally enable third-party cookies in order to use a single trusted site is not a viable solution.

Please allow us to configure this on a per site basis; or, at the very least, provide a quick toggle via the shield icon as an interim solution.

mib2berlin

@ianmacd
Hi, it is not in Vivaldi settings but you can reach cookie settings, add whitelist for example, from chrome://settings .

Cheers, mib

ianmacd

@mib2berlin This isn't a solution, because it's not trivial to compile a list of the cookies that need to be whitelisted.

We are talking about third-party cookies here, not first-party cookies, so they cannot be determined by clicking the padlock in the address bar.

In any case, such cookies are liable to change on a per visit basis. They need to be determined dynamically at page load time.

Is there any way in Vivaldi (perhaps at the console level) to expose the list of third-party cookies as they are blocked? That would at least enable the whitelist method to be used until a better solution is implemented.

jane.n

@ianmacd it's not a quick toggle button, but try what @dude99 suggested for allowing/blocking cookies for the site you have open:

I found the easy way to do this is go to Site info ([padlock icon] on Addressbar) > Cookies > Blocked > (allow/clear on exit) any blocked cookies > Apply.

ianmacd

@jane-n Yeah, that works. Thanks. This is a decent solution, i.e. per site and not too many clicks to enact.

I was under the misapprehension that those cookies were blocked first-party cookies, but I see now that automatically blocked third-party cookies are there, too.

Thanks once again.

AugustFalcon

@jane-n Alas that doesn't seem to work for me in Google Drive when I'm running Vivaldi on the Pop! OS version of Linux. I have to click on the manage cookies link and then scroll down and allow 3rd party cookies before the file will actually download. Bug maybe?

AugustFalcon

@Gwen-Dragon Thanks for the quick response.

I had already added drive.google.com to the allowed list but it still wasn't working for me even after reloading Vivaldi. I then added what you suggested and that didn't work for me either. So I deleted the original drive.google.com entry and then added it back making certain to check the 3rd party cookies box, too. Now its working from my google drive.

debiedowner

@mib2berlin Does that work for allowing third-party cookies? I thought it shouldn't, according to Google:

Important: If you block third-party cookies, all cookies and site data from other sites will be blocked, even if the site is allowed on your exceptions list. [1]

So it looks like this allow list is for always allowing first-party cookies for specific sites, if first-party cookies are set to be blocked or cleared for exit. Third-party cookie blocking shouldn't care about the exception list.

But it looks like the allow list actually works to allow those domains to act as 3rd party domains, as @ianmacd also confirmed. Am I misunderstanding the Google help page or is Vivaldi's implementation somehow different? Even more confusingly, in the UI that @jane.n mentions, it says "The following cookies were blocked (third-party cookies are being blocked without exception)", but when I add them to the list of exceptions, they stop being blocked! Either I am missing something or this is a bug.

As an example, I found a website that uses two third-party cookies and added one of them as an exception:

Though good for those who want to allow third-party cookies on specific sites; in my case this is disappointing as I wanted something that performed the intended function: I wanted to set all first-party cookies to Block Cookies or to Clear when Exited (i.e. Session Only), and allow persistent first-party cookies only on specific websites (and block third-party cookies at all times). But it looks like if I do that, the websites that I whitelist for first-party cookies will have third-party cookie permissions as well, which I absolutely do not want.

bempelise

Is the whitelist synced between devices?