add optout functionality for server-side

eiman-eltigani-ttd · eiman-eltigani-ttd · commit ff73c1e8a156 · 2025-10-16T11:58:20.000-06:00
diff --git a/docker-compose.yml b/docker-compose.yml
@@ -31,6 +31,16 @@ services:
     env_file:
       - .env
 
+  google-secure-signals-server-side:
+    build:
+      context: .
+      dockerfile: web-integrations/google-secure-signals/server-side/Dockerfile
+    ports:
+      - "3042:3042"
+    container_name: google-secure-signals-server-side
+    env_file:
+      - .env
+
   # prebid integrations
   prebid-client:
     build:
diff --git a/web-integrations/google-secure-signals/server-side/Dockerfile b/web-integrations/google-secure-signals/server-side/Dockerfile
@@ -1,10 +1,15 @@
-FROM node:20.11-alpine3.18
-WORKDIR /app
-COPY . .
+FROM node:20.11.0-alpine3.18
+
+WORKDIR /usr/src/app
+
+# Copy package files first for better caching
+COPY web-integrations/google-secure-signals/server-side/package*.json ./
 RUN npm install
 
-RUN apk add --no-cache gettext
-RUN mv public/ads.js public/ads.js.template
-CMD /bin/sh -c "envsubst < public/ads.js.template > public/ads.js && npm start"
+# Copy application files
+COPY web-integrations/google-secure-signals/server-side/server.js ./
+COPY web-integrations/google-secure-signals/server-side/public ./public/
+COPY web-integrations/google-secure-signals/server-side/views ./views/
 
-EXPOSE 3000
+EXPOSE 3042
+CMD ["npm", "start"]
diff --git a/web-integrations/google-secure-signals/server-side/server.js b/web-integrations/google-secure-signals/server-side/server.js
@@ -8,7 +8,7 @@ const nocache = require('nocache');
 const crypto = require('crypto');
 
 const app = express();
-const port = process.env.PORT || 3000;
+const port = process.env.PORT || 3042;
 
 const uid2BaseUrl = process.env.UID2_BASE_URL;
 const uid2ApiKey = process.env.UID2_API_KEY;
@@ -207,7 +207,9 @@ function _GenerateTokenV1(req, res) {
       headers: { Authorization: 'Bearer ' + uid2ApiKey },
     })
     .then((response) => {
-      if (response.data.status !== 'success') {
+      if (response.data.status === 'optout') {
+        res.render('optout');
+      } else if (response.data.status !== 'success') {
         res.render('error', {
           error: 'Got unexpected token generate status: ' + response.data.status,
           response: response,
@@ -246,7 +248,9 @@ app.post('/login', async (req, res) => {
     ); //if HTTP response code is not 200, this throws and is caught in the catch handler below.
     const response = decrypt(encryptedResponse.data, uid2ClientSecret, false, nonce);
 
-    if (response.status !== 'success') {
+    if (response.status === 'optout') {
+      res.render('optout');
+    } else if (response.status !== 'success') {
       res.render('error', {
         error: 'Got unexpected token generate status in decrypted response: ' + response.status,
         response: response,
diff --git a/web-integrations/google-secure-signals/server-side/views/login.html b/web-integrations/google-secure-signals/server-side/views/login.html
@@ -1,5 +1,5 @@
 <%- include('header.html'); -%>
-<form action="/login" method="POST" id="loginForm">
+<form action="/login" method="POST">
   <div class="email_prompt">
     <input
       type="text"
@@ -11,23 +11,4 @@
   </div>
   <div><input type="submit" value="Generate UID2" class="button" /></div>
 </form>
-<script>
-  document.forms['loginForm'].addEventListener('submit', (event) => {
-    event.preventDefault();
-    fetch(event.target.action, {
-      method: 'POST',
-      body: new URLSearchParams(new FormData(event.target)),
-    }).then((response) => {
-      if (!response.ok) {
-        throw new Error(`HTTP error! Status: ${response.status}`);
-      }
-      window.googletag = window.googletag || { cmd: [] };
-      window.googletag.cmd.push(function () {
-        window.googletag.secureSignalProviders = window.googletag.secureSignalProviders || [];
-        window.googletag.secureSignalProviders.clearAllCache();
-      });
-      window.location.replace('/');
-    });
-  });
-</script>
 <%- include('footer.html'); -%>
diff --git a/web-integrations/google-secure-signals/server-side/views/optout.html b/web-integrations/google-secure-signals/server-side/views/optout.html
@@ -0,0 +1,15 @@
+<%- include('header.html'); -%>
+<div class="optout-message">
+  <h2>This email has opted out</h2>
+  <p>
+    The email address you entered has opted out of UID2. No UID2 token can be generated for this
+    email.
+  </p>
+  <p>
+    For testing purposes, you can try with a different email address, such as
+    <strong>test@example.com</strong>.
+  </p>
+  <p><a href="/login" class="button">Try Another Email</a></p>
+</div>
+<%- include('footer.html'); -%>
+
