https://wdqs-tutorial.toolforge.org/ loads external scripts from`https://www.googletagmanager.com/gtag/js` and Noto Serif from`https://fonts.googleapis.com/css`.
These are privacy violations which should be removed.
The latter can likely be replaced by using https://tools-static.wmflabs.org/fontcdn/ instead.
@Visx I'm not a tech person myself, so I would need help with this.
the project is a tutorial for the Wikidata Query Service. It's built as a WordPress site. Are the privacy violations related to the WordPress platform itself, or something else?
I need to understand where the problem lies, and whether the guy who originally built the site can solve it, or we need someone else.
any additional info is much appreciated.
In any case, it's Easter holiday now so it will have to wait until (at least) next week.
Cheers
@WMDE-leszek @Lucas_Werkmeister_WMDE, not sure who is the owner of wdqs-tutorial.toolforge.org
I can't make any changes, I have no writing permissions. Could someone add me to this project?
EDIT: I forgot I can use sudo with SFTP :)
EDIT(2): Oh crap. I tried to edit where WP loads the fonts from in wp-includes/script-loader.php and now the site has crashed. Uploaded the backup of script-loader.php but that didn't solve the problem. Can anyone help?
According to Toolsadmin, you’re a member of the project. I can’t help you with the WordPress errors; the error.log has:
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: PHP Fatal error: Uncaught Error: Call to undefined function register_block_type_from_metadata() in /data/project/wdqs-tutorial/public_html/wp-includes/blocks/file.php:29
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: Stack trace:
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #0 /data/project/wdqs-tutorial/public_html/wp-includes/class-wp-hook.php(288): register_block_core_file('')
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #1 /data/project/wdqs-tutorial/public_html/wp-includes/class-wp-hook.php(312): WP_Hook->apply_filters(NULL, Array)
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #2 /data/project/wdqs-tutorial/public_html/wp-includes/plugin.php(478): WP_Hook->do_action(Array)
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #3 /data/project/wdqs-tutorial/public_html/wp-settings.php(587): do_action('init')
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #4 /data/project/wdqs-tutorial/public_html/wp-config.php(99): require_once('/data/project/w...')
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #5 /data/project/wdqs-tutorial/public_html/wp-load.php(50): require_once('/data/project/w...')
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #6 /data/project/wdqs-tutorial/public_html/wp-blog-header.php(13): require_once('/data/project/w...')
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #7 /data/project/wdqs-tutorial/public_html/index.php(17): require('/data/project/w...')
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: #8 {main}
2022-05-23 09:11:08: (mod_fastcgi.c.421) FastCGI-stderr: thrown in /data/project/wdqs-tutorial/public_html/wp-includes/blocks/file.php on line 29So, having fixed the site after my mishap, I was told by our site manager that no fonts are actually loaded from https://fonts.googleapis.com/css. According to him this link appears in the WP original files but isn't actually used in the site itself.
As for https://www.googletagmanager.com/gtag/js – it is used for analytics. Do you know of an alternative to manage analytics for tools in the toolforge which is compliant with the privacy policy?