From 39d0de751b45956e8706b8710de08828f364a7c1 Mon Sep 17 00:00:00 2001
From: Tudor <tudor.sitaru@gmail.com>
Date: Thu, 8 Jan 2026 14:59:21 +0000
Subject: [PATCH] Add GDPR-compliant cookie consent banner using Silktide
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Implements Silktide Consent Manager via jsDelivr CDN for GDPR compliance.
The banner informs users the site only uses essential cookies and allows
them to manage preferences.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 backend/app.py      |  2 +-
 frontend/index.html | 24 ++++++++++++++++++++++++
 2 files changed, 25 insertions(+), 1 deletion(-)

diff --git a/backend/app.py b/backend/app.py
index 260f163..724b910 100644
--- a/backend/app.py
+++ b/backend/app.py
@@ -67,7 +67,7 @@ class SecurityHeadersMiddleware(BaseHTTPMiddleware):
         response.headers["Content-Security-Policy"] = (
             "default-src 'self'; "
             "script-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net; "
-            "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; "
+            "style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://cdn.jsdelivr.net; "
             "font-src 'self' https://fonts.gstatic.com; "
             "img-src 'self' data:; "
             "connect-src 'self' https://cdn.jsdelivr.net; "
diff --git a/frontend/index.html b/frontend/index.html
index 6589e66..154510a 100644
--- a/frontend/index.html
+++ b/frontend/index.html
@@ -55,6 +55,8 @@
     <link href="https://fonts.googleapis.com/css2?family=DM+Sans:ital,opsz,wght@0,9..40,400;0,9..40,500;0,9..40,600;0,9..40,700&family=Playfair+Display:wght@600;700&display=swap" rel="stylesheet">
     <script src="https://cdn.jsdelivr.net/npm/chart.js"></script>
     <link rel="stylesheet" href="/static/styles.css">
+    <!-- Cookie Consent Banner -->
+    <link rel="stylesheet" href="https://cdn.jsdelivr.net/gh/silktide/consent-manager@main/silktide-consent-manager.css">
 </head>
 <body>
     <div class="noise-overlay"></div>
@@ -340,6 +342,28 @@
     </footer>
 
     <script src="/static/app.js"></script>
+    <!-- Cookie Consent Banner -->
+    <script src="https://cdn.jsdelivr.net/gh/silktide/consent-manager@main/silktide-consent-manager.js"></script>
+    <script>
+        window.silktideConsentManager.init({
+            consentTypes: [
+                {
+                    id: 'necessary',
+                    label: 'Necessary',
+                    description: 'Essential cookies required for the website to function properly.',
+                    required: true,
+                    defaultValue: true
+                }
+            ],
+            text: {
+                title: 'Cookie Preferences',
+                description: 'This website does not use tracking cookies. We only use essential cookies required for the site to function.',
+                acceptAll: 'Accept',
+                rejectAll: 'Reject All',
+                save: 'Save Preferences'
+            }
+        });
+    </script>
 </body>
 </html>