update and standardize opt out testing steps based off integration

eiman-eltigani-ttd · eiman-eltigani-ttd · commit 4a5998a88c4f · 2025-11-25T16:48:11.000-05:00
diff --git a/web-integrations/google-secure-signals/client-side/html/index.html b/web-integrations/google-secure-signals/client-side/html/index.html
@@ -65,6 +65,20 @@ <h2>${IDENTITY_NAME} Integration Status</h2>
             </td>
             <td class="value"><pre id="login_required"></pre></td>
           </tr>
+          <tr>
+            <td class="label">
+              <div class="tooltip-wrapper">
+                Has Opted Out?
+                <div class="tooltip">
+                  <span class="tooltip-trigger">?</span>
+                  <div class="tooltip-content">
+                    Shows whether the user has exercised opt-out, in which case no advertising token may be generated or used.
+                  </div>
+                </div>
+              </div>
+            </td>
+            <td class="value"><pre id="has_opted_out"></pre></td>
+          </tr>
           <tr>
             <td class="label">
               <div class="tooltip-wrapper">
@@ -120,12 +134,6 @@ <h2>${IDENTITY_NAME} Integration Status</h2>
           <button id="play-button">Play</button>
         </div>
 
-        <div id="optout_banner" style="display: none">
-          <p>The email address you entered has opted out of ${IDENTITY_NAME}.</p>
-        </div>
-        <div id="optout_message" style="display: none" class="form">
-          <button type="button" class="button" id="try_another">Try Another Email</button>
-        </div>
         <div id="login_form" style="display: none" class="form">
           <div class="email_prompt">
             <input
@@ -176,16 +184,17 @@ <h4>Step 3: View Video Ad</h4>
         <div class="section">
           <h4>Step 4: Test Opt-Out</h4>
           <ul>
-            <li>Try entering: <strong>optout@example.com</strong></li>
-            <li>Yellow banner shows "opted out" status</li>
-            <li>Click "Try Another Email" to test a different email</li>
+            <li>Try the special email: <code>test@example.com</code></li>
+            <li>Observe "Has opted out?" changes to "yes"</li>
+            <li>No advertising token is generated</li>
           </ul>
         </div>
 
         <div class="section">
           <h4>What's Happening?</h4>
           <ul>
             <li><strong>Client-Side Token Generation:</strong> The SDK generates tokens directly in the browser</li>
+            <li><strong>Auto-Refresh:</strong> Tokens are automatically refreshed by the SDK in the background when expired</li>
             <li><strong>Google Secure Signals:</strong> Encrypted tokens are stored and shared with Google Ad Manager</li>
             <li><strong>IMA SDK:</strong> Displays video ads with ${IDENTITY_NAME} targeting</li>
           </ul>
diff --git a/web-integrations/google-secure-signals/client-side/html/scripts/scripts.js b/web-integrations/google-secure-signals/client-side/html/scripts/scripts.js
@@ -23,22 +23,17 @@ function updateGuiElements(state) {
   
   // Check for opt-out: only if user attempted login, and we got identity null with no token
   const isOptedOut = loginAttempted && !token && state?.identity === null;
+  $('#has_opted_out').text(isOptedOut ? 'yes' : 'no');
   
   if (isOptedOut) {
     $('#login_form').hide();
-    $('#logout_form').hide();
-    $('#optout_message').show();
-    $('#optout_banner').show();
+    $('#logout_form').show();
   } else if (loginRequired) {
     $('#login_form').show();
     $('#logout_form').hide();
-    $('#optout_message').hide();
-    $('#optout_banner').hide();
   } else {
     $('#login_form').hide();
     $('#logout_form').show();
-    $('#optout_message').hide();
-    $('#optout_banner').hide();
   }
 
   const secureSignalsStorageKey = '${UID_SECURE_SIGNALS_STORAGE_KEY}';
@@ -81,13 +76,6 @@ function onDocumentReady() {
       console.error('setIdentityFromEmail failed', e);
     }
   });
-
-  $('#try_another').click(() => {
-    window.googletag.secureSignalProviders.clearAllCache();
-    sdk.disconnect();
-    $('#email').val('');
-    loginAttempted = false; // Reset flag
-  });
 }
 
 sdk.callbacks.push(onIdentityUpdated);
@@ -106,8 +94,6 @@ sdk.callbacks.push((eventType, payload) => {
       // Set initial UI state - updateGuiElements will adjust based on actual identity state
       $('#login_form').show();
       $('#logout_form').hide();
-      $('#optout_message').hide();
-      $('#optout_banner').hide();
     });
   }
 });
diff --git a/web-integrations/google-secure-signals/client-side/html/styles/app.css b/web-integrations/google-secure-signals/client-side/html/styles/app.css
@@ -244,21 +244,6 @@ a:hover {
 }
 
 /* Opt-out Banner */
-#optout_banner {
-  background: linear-gradient(135deg, rgba(255, 193, 7, 0.1) 0%, rgba(255, 193, 7, 0.05) 100%);
-  border-left: 4px solid #ffc107;
-  padding: 1.25rem;
-  margin: 1.5rem 0;
-  border-radius: 6px;
-  color: var(--text-dark);
-  font-size: 0.95rem;
-  font-weight: 600;
-}
-
-#optout_banner p {
-  margin: 0;
-}
-
 /* Success Message */
 .message {
   background: linear-gradient(135deg, rgba(34, 197, 94, 0.1) 0%, rgba(34, 197, 94, 0.05) 100%);
diff --git a/web-integrations/javascript-sdk/client-side/html/index.html b/web-integrations/javascript-sdk/client-side/html/index.html
@@ -222,8 +222,8 @@ <h4>Step 4: Test Opt-Out</h4>
           <h4>What's Happening?</h4>
           <ul>
             <li><strong>Client-Side Token Generation:</strong> The SDK generates tokens directly in the browser using your public credentials</li>
-            <li><strong>Auto-Refresh:</strong> Tokens are automatically refreshed in the background to maintain up-to-date identity</li>
-            <li><strong>Local Storage:</strong> Identity is stored in localStorage (__uid2_advertising_token or __euid_advertising_token) for persistence across page loads</li>
+            <li><strong>Auto-Refresh:</strong> Tokens are automatically refreshed by the SDK in the background when expired</li>
+            <li><strong>Local Storage:</strong> The SDK stores identity in localStorage (__uid2_advertising_token or __euid_advertising_token) for persistence across page loads</li>
           </ul>
         </div>
 
diff --git a/web-integrations/prebid-integrations/client-side/index.html b/web-integrations/prebid-integrations/client-side/index.html
@@ -265,8 +265,6 @@ <h2>${IDENTITY_NAME} Integration Status</h2>
           </tr>
         </table>
 
-        <div id="test-div"></div>
-
         <div id="login_form" style="display: none" class="form">
           <div class="email_prompt">
             <input
@@ -308,17 +306,19 @@ <h4>Step 2: Observe Integration</h4>
         <div class="section">
           <h4>Step 3: Test Opt-Out</h4>
           <ul>
-            <li>Try entering: <strong>optout@example.com</strong></li>
-            <li>Table shows "opted out" status</li>
-            <li>Click "Clear ${IDENTITY_NAME}" to try another email</li>
+            <li>Try entering: <strong>test@example.com</strong></li>
+            <li>Advertising token shows "This email has opted out"</li>
+            <li>No advertising token is stored</li>
           </ul>
         </div>
 
         <div class="section">
           <h4>What's Happening?</h4>
           <ul>
-            <li><strong>Client-Side Token Generation:</strong> The SDK generates tokens directly in the browser</li>
-            <li><strong>Prebid Storage:</strong> Tokens are stored in localStorage (__uid2_advertising_token or __euid_advertising_token)</li>
+            <li><strong>Client-Side Token Generation:</strong> The SDK generates the initial ${IDENTITY_NAME} token directly in the browser</li>
+            <li><strong>Prebid Management:</strong> Prebid's ${IDENTITY_NAME} module reads and manages the token lifecycle</li>
+            <li><strong>Auto-Refresh:</strong> Tokens are automatically refreshed by Prebid's ${IDENTITY_NAME} module in the background when expired</li>
+            <li><strong>Local Storage:</strong> Prebid stores tokens in localStorage (__uid2_advertising_token or __euid_advertising_token) for persistence</li>
             <li><strong>Header Bidding:</strong> Prebid shares ${IDENTITY_NAME} tokens with bidders automatically</li>
           </ul>
         </div>
diff --git a/web-integrations/prebid-secure-signals/client-side/index.html b/web-integrations/prebid-secure-signals/client-side/index.html
@@ -43,6 +43,7 @@
           $('#login_form').hide();
           $('#clear_storage_form').show();
           $('#page-content').hide();
+          $('#verification_instructions').hide();
         } else {
           // Show "undefined" if no token, otherwise show the token
           $('#advertising_token').text(identity ? String(identity.id) : 'undefined');
@@ -82,6 +83,25 @@
       }
 
       function updateSecureSignalsStatus() {
+        // Check if user is opted out first
+        const storedToken = localStorage.getItem(storageKey);
+        let isOptedOut = false;
+        if (storedToken) {
+          try {
+            const tokenData = JSON.parse(storedToken);
+            isOptedOut = tokenData.latestToken === 'optout';
+          } catch (e) {
+            // Ignore parse errors
+          }
+        }
+        
+        // If opted out, don't show verification instructions
+        if (isOptedOut) {
+          $('#secure_signals_configured').text('no (opted out)');
+          $('#verification_instructions').hide();
+          return;
+        }
+        
         // Check if Prebid has the token and encryptedSignalSources is configured
         const prebidUserIds = pbjs.getUserIds();
         const uidToken = prebidUserIds[userIdName];
@@ -93,7 +113,7 @@
         if (uidToken && isConfigured) {
           $('#secure_signals_configured').text('yes');
           
-          // Set verification instructions
+          // Set verification instructions - only show if NOT opted out
           $('#verification_instructions').html(
             `<strong>To verify that encrypted signals are being sent to Google Ad Manager:</strong><br/><br/>` +
             `1. Click the Play button on the video ad below<br/>` +
@@ -404,12 +424,24 @@ <h4>Step 3: View Video Ad</h4>
           </ul>
         </div>
 
+        <div class="section">
+          <h4>Step 4: Test Opt-Out</h4>
+          <ul>
+            <li>Try entering: <strong>test@example.com</strong></li>
+            <li>Advertising token shows "This email has opted out"</li>
+            <li>No advertising token is stored</li>
+          </ul>
+        </div>
+
         <div class="section">
           <h4>What's Happening?</h4>
           <ul>
-            <li><strong>Prebid.js</strong> manages ${IDENTITY_NAME} token storage</li>
-            <li><strong>Google Secure Signals</strong> shares tokens with bidders</li>
-            <li><strong>IMA SDK</strong> displays video ads with targeting</li>
+            <li><strong>Client-Side Token Generation:</strong> The SDK generates the initial ${IDENTITY_NAME} token directly in the browser</li>
+            <li><strong>Prebid Management:</strong> Prebid's ${IDENTITY_NAME} module reads and manages the token lifecycle</li>
+            <li><strong>Auto-Refresh:</strong> Tokens are automatically refreshed by Prebid's ${IDENTITY_NAME} module in the background when expired</li>
+            <li><strong>Local Storage:</strong> Prebid stores tokens in localStorage (__uid2_advertising_token or __euid_advertising_token) for persistence</li>
+            <li><strong>Google Secure Signals:</strong> Encrypted signals are shared with Google Ad Manager</li>
+            <li><strong>IMA SDK:</strong> Displays video ads with ${IDENTITY_NAME} targeting</li>
           </ul>
         </div>
 
