Rename Server Side Cookie (SSC) to Edge Cookie (EC) throughout codebase

Rename the SSC feature to Edge Cookie (EC) to better reflect its
purpose as an edge-generated identifier. This is a hard cutover with
no backward compatibility — the feature has not been deployed yet.

Code changes (18 Rust files):
- ssc.rs → ec.rs (module rename + all functions/tests)
- Constants: COOKIE_TS_SSC → COOKIE_TS_EC, HEADER_X_TS_SSC → HEADER_X_TS_EC
- Settings: struct Ssc → Ec, removed legacy synthetic alias
- Error variant: Ssc → Ec
- Cookie/header/query-param wire names: ts-ssc → ts-ec, x-ts-ssc → x-ts-ec
- OpenRTB field: ssc_fresh → ec_fresh
- Extracted upsert_ec_query_param helper in proxy.rs (dedup)

Config: [ssc] → [ec] in trusted-server.toml and all test configs
KV store test data: synthetic_id → ec_counter
JS: Updated GPT integration comments
Docs: Renamed server-side-cookies.md → edge-cookies.md, updated 27 doc files
Also removed stale nonexistent X-TS-SSC-Trusted-Server header from docs

Author: ChristianPavilonis

CLAUDE.md

@@ -6,7 +6,7 @@
 ## Project Overview
 
 Rust-based edge computing application targeting **Fastly Compute**. Handles
-privacy-preserving Server Side Cookie (SSC) ID generation, ad serving with GDPR compliance,
+privacy-preserving Edge Cookie (EC) ID generation, ad serving with GDPR compliance,
 real-time bidding integration, and publisher-side JavaScript injection.
 
 ## Workspace Layout
@@ -366,7 +366,7 @@ both runtime behavior and build/tooling changes.
 | `crates/common/src/tsjs.rs`                  | Script tag generation with module IDs             |
 | `crates/common/src/html_processor.rs`        | Injects `<script>` at `<head>` start              |
 | `crates/common/src/publisher.rs`             | `/static/tsjs=` handler, concatenates modules     |
-| `crates/common/src/ssc.rs`                   | Server Side Cookie (SSC) ID generation            |
+| `crates/common/src/ec.rs`                    | Edge Cookie (EC) ID generation                    |
 | `crates/common/src/cookies.rs`               | Cookie handling                                   |
 | `crates/common/src/gdpr.rs`                  | GDPR consent management                           |
 | `crates/common/src/http_wrapper.rs`          | HTTP abstractions                                 |

OPTIMIZATION.md

@@ -35,7 +35,7 @@ This document presents a performance analysis and optimization plan for the Trus
 | ~2% | `IntegrationRegistry` | Route lookup + attribute rewriting + initialization |
 | ~0.8% | Memory allocation (`RawVec::reserve`) | Buffer growth during processing |
 | ~0.5% | Logging (`fern` / `log_fastly`) | Minimal overhead |
-| ~0.5% | Synthetic ID generation | HMAC computation |
+| ~0.5% | EC ID generation | HMAC computation |
 | ~0.5% | Header extraction | `fastly::http::handle::get_header_values` |
 
 ### Key Takeaways
@@ -271,7 +271,7 @@ let settings: Settings = postcard::from_bytes(SETTINGS_DATA)
 | `eq_ignore_ascii_case` for compression detection | `streaming_processor.rs:47` | 5 |
 | `Cow<str>` for string replacements | `streaming_replacer.rs:120-125` | 5-10 |
 | Remove base64 roundtrip in token computation | `http_util.rs:286-294` | 10-15 |
-| Replace Handlebars with manual interpolation | `synthetic.rs:82-99` | ~20 |
+| Replace Handlebars with manual interpolation | `ec.rs:82-99` | ~20 |
 | Cache `origin_host()` result per-request | `settings.rs` | 5-10 |
 
 ---

PUBLISHER_IDS_AUDIT.md

@@ -11,7 +11,7 @@ This document lists all publisher-specific IDs and configurations found in the c
 - `server_url = "https://securepubads.g.doubleclick.net/gampad/ads"` (line 15)
 
 **Equativ Configuration:**
-- `sync_url = "https://adapi-srv-eu.smartadserver.com/ac?pgid=2040327&fmtid=137675&synthetic_id={{synthetic_id}}"` (line 8)
+- `sync_url = "https://adapi-srv-eu.smartadserver.com/ac?pgid=2040327&fmtid=137675&ec_id={{ec_id}}"` (line 8)
   - Page ID: `2040327`
   - Format ID: `137675`
 

crates/common/README.md

@@ -47,12 +47,12 @@ JS bundles (served by publisher module):
 
 Behavior is covered by an extensive test suite in `crates/common/src/creative.rs`.
 
-## Server Side Cookie (SSC) Identifier Propagation
-
-- `ssc.rs` generates a server side cookie identifier per user request and exposes helpers:
-  - `generate_ssc_id` — creates a fresh HMAC-based ID using the client IP address and appends a short random suffix (format: `64hex.6alnum`).
-  - `get_ssc_id` — extracts an existing ID from the `x-ts-ssc` header or `ts-ssc` cookie.
-  - `get_or_generate_ssc_id` — reuses the existing ID when present, otherwise creates one.
-- `publisher.rs::handle_publisher_request` stamps proxied origin responses with `x-ts-ssc`, and (when absent) issues the `ts-ssc` cookie so the browser keeps the identifier on subsequent requests.
-- `proxy.rs::handle_first_party_proxy` replays the identifier to third-party creative origins by appending `ts-ssc=<value>` to the reconstructed target URL, follows redirects (301/302/303/307/308) up to four hops, and keeps downstream fetches linked to the same user scope.
-- `proxy.rs::handle_first_party_click` adds `ts-ssc=<value>` to outbound click redirect URLs so analytics endpoints can associate clicks with impressions without third-party cookies.
+## Edge Cookie (EC) Identifier Propagation
+
+- `ec.rs` generates an edge cookie identifier per user request and exposes helpers:
+  - `generate_ec_id` — creates a fresh HMAC-based ID using the client IP address and appends a short random suffix (format: `64hex.6alnum`).
+  - `get_ec_id` — extracts an existing ID from the `x-ts-ec` header or `ts-ec` cookie.
+  - `get_or_generate_ec_id` — reuses the existing ID when present, otherwise creates one.
+- `publisher.rs::handle_publisher_request` stamps proxied origin responses with `x-ts-ec`, and (when absent) issues the `ts-ec` cookie so the browser keeps the identifier on subsequent requests.
+- `proxy.rs::handle_first_party_proxy` replays the identifier to third-party creative origins by appending `ts-ec=<value>` to the reconstructed target URL, follows redirects (301/302/303/307/308) up to four hops, and keeps downstream fetches linked to the same user scope.
+- `proxy.rs::handle_first_party_click` adds `ts-ec=<value>` to outbound click redirect URLs so analytics endpoints can associate clicks with impressions without third-party cookies.

crates/common/src/auction/README.md

@@ -67,7 +67,7 @@ When a request arrives at the `/auction` endpoint, it goes through the following
                               ▼
 ┌──────────────────────────────────────────────────────────────────────┐
 │  4. Generate User IDs (mod.rs:206-214)                               │
-│     - Create/retrieve SSC ID (persistent)                            │
+│     - Create/retrieve EC ID (persistent)                             │
 │     - Generate fresh ID (per-request)                                │
 └──────────────────────────────────────────────────────────────────────┘
                               │

crates/common/src/auction/formats.rs

@@ -13,13 +13,13 @@ use std::collections::HashMap;
 use uuid::Uuid;
 
 use crate::auction::context::ContextValue;
-use crate::constants::{HEADER_X_TS_SSC, HEADER_X_TS_SSC_FRESH};
+use crate::constants::{HEADER_X_TS_EC, HEADER_X_TS_EC_FRESH};
 use crate::creative;
+use crate::ec::{generate_ec_id, get_or_generate_ec_id};
 use crate::error::TrustedServerError;
 use crate::geo::GeoInfo;
 use crate::openrtb::{OpenRtbBid, OpenRtbResponse, ResponseExt, SeatBid};
 use crate::settings::Settings;
-use crate::ssc::{generate_ssc_id, get_or_generate_ssc_id};
 
 use super::orchestrator::OrchestrationResult;
 use super::types::{
@@ -69,20 +69,20 @@ pub struct BannerUnit {
 /// # Errors
 ///
 /// Returns an error if:
-/// - SSC ID generation fails
+/// - EC ID generation fails
 /// - Request contains invalid banner sizes (must be [width, height])
 pub fn convert_tsjs_to_auction_request(
     body: &AdRequest,
     settings: &Settings,
     req: &Request,
 ) -> Result<AuctionRequest, Report<TrustedServerError>> {
-    // Generate SSC ID
-    let ssc_id =
-        get_or_generate_ssc_id(settings, req).change_context(TrustedServerError::Auction {
-            message: "Failed to generate SSC ID".to_string(),
+    // Generate EC ID
+    let ec_id =
+        get_or_generate_ec_id(settings, req).change_context(TrustedServerError::Auction {
+            message: "Failed to generate EC ID".to_string(),
         })?;
-    let fresh_id = generate_ssc_id(settings, req).change_context(TrustedServerError::Auction {
-        message: "Failed to generate fresh SSC ID".to_string(),
+    let fresh_id = generate_ec_id(settings, req).change_context(TrustedServerError::Auction {
+        message: "Failed to generate fresh EC ID".to_string(),
     })?;
 
     // Convert ad units to slots
@@ -176,7 +176,7 @@ pub fn convert_tsjs_to_auction_request(
             page_url: Some(format!("https://{}", settings.publisher.domain)),
         },
         user: UserInfo {
-            id: ssc_id,
+            id: ec_id,
             fresh_id,
             consent: None,
         },
@@ -291,7 +291,7 @@ pub fn convert_to_openrtb_response(
 
     Ok(Response::from_status(StatusCode::OK)
         .with_header(header::CONTENT_TYPE, "application/json")
-        .with_header(HEADER_X_TS_SSC, &auction_request.user.id)
-        .with_header(HEADER_X_TS_SSC_FRESH, &auction_request.user.fresh_id)
+        .with_header(HEADER_X_TS_EC, &auction_request.user.id)
+        .with_header(HEADER_X_TS_EC_FRESH, &auction_request.user.fresh_id)
         .with_body(body_bytes))
 }

crates/common/src/auction/types.rs

@@ -69,7 +69,7 @@ pub struct PublisherInfo {
 /// Privacy-preserving user information.
 #[derive(Debug, Clone, Serialize, Deserialize)]
 pub struct UserInfo {
-    /// Stable SSC ID (from cookie or freshly generated)
+    /// Stable EC ID (from cookie or freshly generated)
     pub id: String,
     /// Fresh ID for this session
     pub fresh_id: String,

crates/common/src/constants.rs

@@ -1,10 +1,10 @@
 use http::header::HeaderName;
 
-pub const COOKIE_TS_SSC: &str = "ts-ssc";
+pub const COOKIE_TS_EC: &str = "ts-ec";
 
 pub const HEADER_X_PUB_USER_ID: HeaderName = HeaderName::from_static("x-pub-user-id");
-pub const HEADER_X_TS_SSC: HeaderName = HeaderName::from_static("x-ts-ssc");
-pub const HEADER_X_TS_SSC_FRESH: HeaderName = HeaderName::from_static("x-ts-ssc-fresh");
+pub const HEADER_X_TS_EC: HeaderName = HeaderName::from_static("x-ts-ec");
+pub const HEADER_X_TS_EC_FRESH: HeaderName = HeaderName::from_static("x-ts-ec-fresh");
 pub const HEADER_X_CONSENT_ADVERTISING: HeaderName =
     HeaderName::from_static("x-consent-advertising");
 pub const HEADER_X_FORWARDED_FOR: HeaderName = HeaderName::from_static("x-forwarded-for");
@@ -44,8 +44,8 @@ pub const HEADER_REFERER: HeaderName = HeaderName::from_static("referer");
 /// Uses `&str` slices because `HeaderName` has interior mutability and cannot appear
 /// in `const` context.
 pub const INTERNAL_HEADERS: &[&str] = &[
-    "x-ts-ssc",
-    "x-ts-ssc-fresh",
+    "x-ts-ec",
+    "x-ts-ec-fresh",
     "x-pub-user-id",
     "x-subject-id",
     "x-consent-advertising",

crates/common/src/cookies.rs

@@ -8,7 +8,7 @@ use error_stack::{Report, ResultExt};
 use fastly::http::header;
 use fastly::Request;
 
-use crate::constants::COOKIE_TS_SSC;
+use crate::constants::COOKIE_TS_EC;
 use crate::error::TrustedServerError;
 use crate::settings::Settings;
 
@@ -59,24 +59,24 @@ pub fn handle_request_cookies(
     }
 }
 
-/// Creates an SSC cookie string.
+/// Creates an EC cookie string.
 ///
 /// Generates a properly formatted cookie with security attributes
-/// for storing the SSC ID.
+/// for storing the EC ID.
 #[must_use]
-pub fn create_ssc_cookie(settings: &Settings, ssc_id: &str) -> String {
+pub fn create_ec_cookie(settings: &Settings, ec_id: &str) -> String {
     format!(
         "{}={}; Domain={}; Path=/; Secure; SameSite=Lax; Max-Age={}",
-        COOKIE_TS_SSC, ssc_id, settings.publisher.cookie_domain, COOKIE_MAX_AGE,
+        COOKIE_TS_EC, ec_id, settings.publisher.cookie_domain, COOKIE_MAX_AGE,
     )
 }
 
-/// Sets the SSC ID cookie on the given response.
+/// Sets the EC ID cookie on the given response.
 ///
 /// This helper abstracts the logic of creating the cookie string and appending
 /// the Set-Cookie header to the response.
-pub fn set_ssc_cookie(settings: &Settings, response: &mut fastly::Response, ssc_id: &str) {
-    response.append_header(header::SET_COOKIE, create_ssc_cookie(settings, ssc_id));
+pub fn set_ec_cookie(settings: &Settings, response: &mut fastly::Response, ec_id: &str) {
+    response.append_header(header::SET_COOKIE, create_ec_cookie(settings, ec_id));
 }
 
 #[cfg(test)]
@@ -161,23 +161,23 @@ mod tests {
     }
 
     #[test]
-    fn test_create_ssc_cookie() {
+    fn test_create_ec_cookie() {
         let settings = create_test_settings();
-        let result = create_ssc_cookie(&settings, "12345");
+        let result = create_ec_cookie(&settings, "12345");
         assert_eq!(
             result,
             format!(
                 "{}=12345; Domain={}; Path=/; Secure; SameSite=Lax; Max-Age={}",
-                COOKIE_TS_SSC, settings.publisher.cookie_domain, COOKIE_MAX_AGE,
+                COOKIE_TS_EC, settings.publisher.cookie_domain, COOKIE_MAX_AGE,
             )
         );
     }
 
     #[test]
-    fn test_set_ssc_cookie() {
+    fn test_set_ec_cookie() {
         let settings = create_test_settings();
         let mut response = fastly::Response::new();
-        set_ssc_cookie(&settings, &mut response, "test-id-123");
+        set_ec_cookie(&settings, &mut response, "test-id-123");
 
         let cookie_header = response
             .get_header(header::SET_COOKIE)
@@ -186,10 +186,10 @@ mod tests {
             .to_str()
             .expect("header should be valid UTF-8");
 
-        let expected = create_ssc_cookie(&settings, "test-id-123");
+        let expected = create_ec_cookie(&settings, "test-id-123");
         assert_eq!(
             cookie_str, expected,
-            "Set-Cookie header should match create_ssc_cookie output"
+            "Set-Cookie header should match create_ec_cookie output"
         );
     }
 }