On Tue, Jul 10, 2018 at 10:35 AM Martin Grigorov <[email protected]> wrote: > > Then Safari must be broken :-)
It actually isn't: I accepted the GDPR cookie when I opened your payload request. Apparently Safari remembers the cookie (while in Emond's browser it didn't). > The REST call is intercepted by a check for "GDPR agreed" cookie. So the > response is a HTML page asking you to click "OK" and then you are > redirected to the original destination. > > I guess Tumblr will fix it soon. It is stupid to ask for EU/GDPR consent in > REST API calls. I'm submitting a bug report. However, this might mean we need to move the carroussel generation to build-time (i.e. when the site gets built and published) rather than dynamic. I guess they will also GDPR notice the images we link to from now on? Martijn
