Versions Compared

Old Version 7

changes.mady.by.user Roy Bissels

Saved on

compared with

New Version 8

changes.mady.by.user Roy Bissels

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Referrer-Policy header

The Referrer-Policy header for in the HTTP requests response is used to control how much information about the origin's URI is passed with requests. It prevents from situations that could result in sensitive information being leaked to the third party. Even if security is not compromised, the information may not be something the user wants to be shared.

Note

By default this is enabled and set to no-referrer.

To disable use:

Code Block
languagetext
blueriq.security.referrer-policy.enabled=false

To override use:

Code Block
languagetext
blueriq.security.referrer-policy.policy=<HEADER VALUE>

Possible policy header values:

  • no-referrer (default value)
  • no-referrer-when-downgrade
  • same-origin
  • origin
  • strict-origin
  • origin-when-cross-origin
  • strict-origin-when-cross-origin
  • unsafe-url


For more information : https://www.w3.org/TR/referrer-policy/