Hi,
An EU law requiring websites to obtain opt-in consent from website users before any non-essential cookies back be placed on their computer recently came into force in the UK. Roundcube uses cookies for things like remember the position of the splitters on the mail screen. This isn't essential to the operation of the site and so consent must be sort from the user before these cookies can be saved on their computer.
I have created a very simple plugin which displays a banner to the user asking them if they wish to use cookies or not and if they choose not then it disables the JavaScript cookie methods. It also adds a new option in the general settings page to allow the user to change their cookie settings any time they want.
This plugin blocks cookies created via JavaScript. The only JavaScript cookie not blocked by this plugin is the one created by googiespell since that uses slight different methods of the rest of RC. These are the only cookies in the RC core which appear to be non-essential. There is one session cookie created in the PHP as part of the security that is essential and so exempt from opt-in.
This is only a first go at a cookie opt-in system for RC and I'm sure it's not perfect, any feedback welcome. I am wondering it might be better to simply give an "accept and close" option rather than the choice of accepting or blocking.
Phil