These instructions are given for Linux environments and assume you have the following packages installed on your system and your user is in the sudoers list (can execute commands with root access using sudo). If you plan to contribute to the code, a GitHub account is also required to commit your change and/or make pull requests.
The following packages must be installed
- docker
- docker-compose
- nodejs v18
- npm
- git
- mkcert
Privacy Sandbox APIs use the domain name in the URL (site origin) to allow/block cross-site data sharing, observe topics, etc. As a result developers cannot rely only on the “localhost” domain for development.
You will re-map individual domain names to loopback address (127.0.0.1), so that each service running on your local environment can be accessed via a URL, such as:
There are 2 ways to achieve remapping on your local development environment. You can choose either of the 2 options below :
- Remap hosts to loopback address by editing /etc/hosts on your local machine
Edit /etc/hosts file
# /etc/hosts
127.0.0.1 privacy-sandbox-demos.dev
127.0.0.1 privacy-sandbox-demos-home.dev
127.0.0.1 privacy-sandbox-demos-dsp.dev
127.0.0.1 privacy-sandbox-demos-dsp-a.dev
127.0.0.1 privacy-sandbox-demos-dsp-b.dev
127.0.0.1 privacy-sandbox-demos-shop.dev
127.0.0.1 privacy-sandbox-demos-travel.dev
127.0.0.1 privacy-sandbox-demos-ssp.dev
127.0.0.1 privacy-sandbox-demos-ssp-a.dev
127.0.0.1 privacy-sandbox-demos-ssp-b.dev
127.0.0.1 privacy-sandbox-demos-ad-server.dev
127.0.0.1 privacy-sandbox-demos-news.dev
127.0.0.1 privacy-sandbox-demos-collector.devVerifying mapping with :
nslookup privacy-sandbox-demos-news.devIf the mapping isn’t reflected in Chrome, try clearing your DNS cache
chrome://net-internals/#dns
- If you use Google Chrome, --host-resolver-rules flag can be used instead.
Start Google chrome with the following argument
google_chrome --host-resolver-rules="MAP privacy-sandbox-demos-* 127.0.0.1"https:// protocol requires a valid certificate for your browser. To get a valid certificate, use mkcert to create a local certification authority
that will be trusted by your local browser. Later you will be creating a certificate for each of the Privacy Sandbox Demos services and configure
nginx to serve those certificates.
Run the command below with your current user (not root !) to create the development Certificate Authority:
mkcert -installTo access the Privacy Sandbox relevance and measurement APIs on Chrome, developers need to enroll their site with the Privacy Sandbox, pass the verification process, and upload an attestation file on their site.
However you do not need to enroll if you are only testing with local traffic. For local testing, Chrome provides a flag and CLI switch to bypass enrollment on your local browser.
Open chrome://flags/#privacy-sandbox-enrollment-overrides
Under Privacy Sandbox Enrollment Overrides select Enabled and enter your site domain names separated by a coma :
Example :
https://privacy-sandbox-demos-dsp.dev,
https://privacy-sandbox-demos-dsp-a.dev,
https://privacy-sandbox-demos-dsp-b.dev,
https://privacy-sandbox-demos-dsp-c.dev,
https://privacy-sandbox-demos-dsp-d.dev,
https://privacy-sandbox-demos-ssp.dev,
https://privacy-sandbox-demos-ssp-a.dev,
https://privacy-sandbox-demos-ssp-b.dev,
https://privacy-sandbox-demos-ssp-c.dev,
https://privacy-sandbox-demos-ssp-d.dev,
https://privacy-sandbox-demos-ad-server.dev- Fork the repository https://github.com/privacysandbox/privacy-sandbox-demos using the button near the top-right corner.
- Clone your fork to your local development environment
Edit .env file. For each${SERVICE}_HOST key, set a value matching the content of the /etc/hosts configuration. (if you are fine with the default
site name, you don’t need to edit the file)
Example with the domain privacy-sandbox-demos-${SERVICE}.dev
#.env
# External Port (bind by Nginx)
EXTERNAL_PORT=443
# Bind by each Application Server (fixed value)
PORT=8080
# home
HOME_HOST=privacy-sandbox-demos-home.dev
HOME_TOKEN=""
HOME_DETAIL="Home page of Privacy Sandbox Demos"
# Publisher
## news
NEWS_HOST=privacy-sandbox-demos-news.dev
NEWS_TOKEN=""
NEWS_DETAIL="Publisher: News media site"
...From the project root folder run :
# Download packages and dependencies :
$ npm install
# Generate the SSL Certificates for Nginx proxy service :
$ npm run certBuild the html static files that will be served by the home web server. The build process uses docusaurus.
From the project root folder, navigate to services/home folder and run :
# Download package and dependencies (docusaurus)
npm install
# Build the html static files from the markdown docs.
npm run build# Build and run the docker containers (docker must be run with root permission) :
$ sudo npm run startOpen the home page: https://privacy-sandbox-demos-home.dev
To stop your development environment, you will need to stop each container :
Docker-compose can do that in 1 command. In a new terminal run :
sudo docker-compose stopIf for some reason it's not working, you can stop each container manually
# stop containers
sudo docker container stop sandcastle_travel
sudo docker container stop sandcastle_dsp
sudo docker container stop sandcastle_dsp-a
sudo docker container stop sandcastle_dsp-b
sudo docker container stop sandcastle_home
sudo docker container stop sandcastle_ssp-a
sudo docker container stop sandcastle_ssp-b
sudo docker container stop sandcastle_ad-server
sudo docker container stop sandcastle_news
sudo docker container stop sandcastle_proxy
sudo docker container stop sandcastle_shop
sudo docker container stop sandcastle_collectorIf you want to clean (remove) the container image in your local registry you can do so by running the command :
sudo docker-compose rmIf for some reason it's not working, you can remove each container image manually
# stop containers
sudo docker container rm sandcastle_travel
sudo docker container rm sandcastle_dsp
sudo docker container rm sandcastle_dsp-a
sudo docker container rm sandcastle_dsp-b
sudo docker container rm sandcastle_home
sudo docker container rm sandcastle_ssp
sudo docker container rm sandcastle_ssp-a
sudo docker container rm sandcastle_ssp-b
sudo docker container rm sandcastle_ad-server
sudo docker container rm sandcastle_news
sudo docker container rm sandcastle_proxy
sudo docker container rm sandcastle_shop
sudo docker container rm sandcastle_collectorAfter node dependency updates or major updates, you will need to clean your container images and volumes. There might be some situation where your local image registry is corrupted, inconsistent, or has accumulated too many unused images. You can take a fresh start by cleaning your local images.
Execute the following commands from the project root directory :
# prune docker images and volumes
sudo npm run cleanif it does not work, you can troubleshoot by running the following commands one at a time.
Remove any stopped containers and all unused images (not just dangling images) :
# Remove any stopped containers and all unused images
sudo docker system prune -aStop running containers
# show running containers
sudo docker ps -a
# stop all running containers
sudo docker stop $(sudo docker ps -a -q)Remove one or more specific containers
# Use the docker ps command with the -a flag to locate
# the name or ID of the containers you want to remove:
sudo docker ps -a
# remove the container
sudo docker container ID_or_Name
# Remove all exited containers
sudo docker rm $(sudo docker ps -a -f status=exited -q)Remove one or more specific images
# to locate the ID of the images you want to remove.
# This will show you every image, including intermediate image layers
sudo docker images -a
# When you’ve located the images you want to delete,
# you can pass their ID or tag to docker rmi:
sudo docker image rm [image_id]
# Remove all images
sudo docker rmi $(sudo docker images -a -q)