Liferay

Liferay

Liferay is an enterprise portal and digital experience platform. Scripts on Liferay-powered sites manage page navigation, content delivery, and user session state. They may also load analytics and personalization scripts, and set session and authentication cookies required for portal functionality.

Back to Vendor Library

Overview

Liferay is an enterprise digital experience platform that powers corporate portals, intranets, and customer-facing websites. Unlike third-party script vendors, Liferay is typically the application framework itself — sites built on Liferay run its JavaScript natively as part of the platform's page rendering and navigation system. Liferay also offers optional analytics and personalization modules that add tracking capabilities to portal pages.

What This Script Does

On Liferay-powered sites, the platform's JavaScript manages core page functionality: content rendering, navigation, form handling, and user session management. Authentication cookies are set for logged-in portal users, with session cookies maintaining login state and CSRF protection tokens securing form submissions.

Liferay Analytics Cloud, when enabled, loads an additional JavaScript agent from analytics.liferay.com or a self-hosted endpoint. This agent tracks page views, content interactions, form submissions, and asset downloads. It sets persistent cookies (typically expiring after 1 year) to identify unique visitors and build behavioral profiles for content recommendations and audience segmentation.

Data collected by the analytics module includes page URLs, time on page, click events, form field interactions, search queries within the portal, and document download events. User identifiers from the portal's authentication system may be linked to analytics profiles for known-user tracking.

Consent & Compliance

Liferay scripts span analytics and functional categories. The core platform scripts — session management, authentication, navigation — are functional and essential to the portal's operation. The Liferay Analytics Cloud module falls under analytics, as it collects behavioral data for reporting and personalization purposes.

Under GDPR and ePrivacy, the core session and authentication cookies are strictly necessary for delivering the portal service and do not require consent. The Analytics Cloud cookies and behavioral tracking, however, require consent before activation as they serve non-essential analytics purposes. Under CCPA/CPRA, the analytics data collection may require disclosure and opt-out mechanisms, particularly if visitor profiles are shared with Liferay's cloud infrastructure.

Should You Block This Without Consent?

Conditional. The core Liferay platform scripts that handle page rendering, navigation, and authentication are functional and should not be blocked. However, the Liferay Analytics Cloud module and any personalization tracking scripts should be blocked until the visitor has consented to analytics data collection. Ensure the analytics module is loaded separately from core platform scripts to enable selective blocking.

Visit website

Consent Categories

Analytics
Functional

Also Known As

liferayliferay portalliferay analyticsenterprise portal cookiesliferay session tracking

Industries

Computers Electronics and TechnologyProgramming and Developer SoftwareBusiness and Consumer ServicesMarketing and Advertising

Tracked Domains (1)

liferay.comAnalytics

Frequently Asked Questions

Which Liferay components require consent?

Liferay's core portal scripts — session management, authentication, navigation — are functional and do not require consent. The Liferay Analytics Cloud module requires consent because it sets persistent cookies and collects behavioral data including page views, clicks, and form interactions.

What does Liferay Analytics Cloud collect?

Liferay Analytics Cloud tracks page views, time on page, click events, form field interactions, search queries, and asset downloads. It sets persistent cookies expiring after approximately one year to identify unique visitors and link known portal users to behavioral analytics profiles.

How does ConsentStack manage Liferay deployments?

ConsentStack allows Liferay's core platform scripts to load without consent while blocking the Analytics Cloud module until analytics consent is granted. This requires the analytics module to be loaded separately from core platform scripts so selective blocking is possible.

Related Vendors

Google
Google
Google is the dominant provider of web analytics, advertising, and infrastructure tools. Scripts like Google Analytics, Tag Manager, Ads, and reCAPTCHA collect behavioral data, manage tag firing, serve targeted ads, and detect bots. Sets persistent cookies to track users and correlate activity across sites.
Firebase
Firebase
Firebase is Google's mobile and web application development platform offering authentication, real-time database, cloud functions, and analytics. Web SDK scripts initialize Firebase services and may track app events via Firebase Analytics, which is powered by Google Analytics 4. Widely used in single-page apps and PWAs for backend infrastructure and usage tracking.
Google Analytics
Google Analytics
Google Analytics is the world's most widely deployed web analytics platform. Scripts track page views, sessions, user demographics, traffic sources, and conversion events. Drops cookies to identify returning visitors and attribute user journeys across sessions.
Microsoft Dynamics 365
Microsoft Dynamics 365
Microsoft Dynamics 365 is a suite of CRM and ERP applications that integrates with websites through tracking scripts and embedded forms. Web tracking code captures visitor behavior, page views, and form submissions to build customer profiles and score leads. Sets cookies to identify returning visitors and attribute marketing touchpoints across sessions.
Microsoft
Microsoft
Runs Clarity (session recording and heatmaps), the Microsoft Advertising UET tag (conversion tracking), and Bing's remarketing pixel. Clarity injects a recording script that captures mouse movements, clicks, and rage clicks. The UET tag fires conversion events to tie ad clicks to on-site actions across Microsoft's ad network.
LinkedIn Insight Tag
LinkedIn Insight Tag
LinkedIn Insight Tag is a JavaScript tracking pixel for LinkedIn's advertising and analytics platform. The tag fires on every page view to collect URL, referrer, IP address, and device data for conversion tracking, website demographics reporting, and retargeting audience building. Sets cookies to identify LinkedIn members across advertiser websites.

Manage consent for Liferay

ConsentStack automatically detects and manages Liferay trackers so your site stays compliant with global privacy regulations.

Get started free