Page History
Referrer-Policy header
The Referrer-Policy header for HTTP requests is used to control how much information about the origin's URI is passed with requests. It prevents from situations that could result in sensitive information being leaked to the third party. Even if security is not compromised, the information may not be something the user wants to be shared.
| Note |
|---|
By default this is enabled and set to no-referrer. |
To disable use:
| Code Block | ||
|---|---|---|
| ||
blueriq.security.referrer-policy.enabled=false |
To override use:
| Code Block | ||
|---|---|---|
| ||
blueriq.security.referrer-policy.enabled=true
blueriq.security.referrer-policy.policy=<HEADER VALUE> |
Possible policy header values:
- no-referrer (default value)
- no-referrer-when-downgrade
- same-origin
- origin
- strict-origin
- origin-when-cross-origin
- strict-origin-when-cross-origin
- unsafe-url
Overview
Content Tools