W3C home > Mailing lists > Public > public-tracking@w3.org > October 2011

Action 13 - Mandatory Server Response

From: Tom Lowenthal <tom@mozilla.com>
Date: Mon, 10 Oct 2011 16:25:36 -0700
Message-ID: <4E937EF0.3000303@mozilla.com>
To: "public-tracking@w3.org" <public-tracking@w3.org>
Proposal to the W3C Tracking Protection Working Group
Authored by Thomas Lowenthal, Mozilla
Associated with [Action
13](http://www.w3.org/2011/tracking-protection/track/actions/13)


When a server receives a request in which the DNT header is present, any
response **must** include a header of the form:

> DNT:AB

where:
- "A" is the the value of the header that the server received, and
- "B" is a statement by the server about how it will act, where:
    -"0" represents "will act as if the DNT signal is not present", and
    -"1" represents "will act as if the DNT signal is present".

Examples:
- A client sends a request with "DNT:1". The server knows that this user
has previously agreed to be tracked in exchange for a delicious scone.
The server responds with "DNT10", thereby stating that the user has
requested not to be tracked, but the server will still track this user.
- A client sends a request with "DNT:1". The server responds with
"DNT:11", thereby stating that they have received, and will honor the
user's request not to be tracked.
- A client sends a request with "DNT:0". The server protects the privacy
of all users equally, and responds with "DNT:01", thereby stating that
the server will not track the user.	
Received on Monday, 10 October 2011 23:26:18 UTC

This archive was generated by hypermail 2.3.1 : Friday, 3 November 2017 21:44:41 UTC