https://httpwg.org/specs/rfc9110.html#field.referer A user agent SHOULD NOT send... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

mrngm 11 months ago | parent | context | favorite | on: My Favorite Self-Hosted Apps Launched in 2024

https://httpwg.org/specs/rfc9110.html#field.referer

  A user agent SHOULD NOT send a Referer header field if the referring resource was accessed with a secure protocol and the request target has an origin differing from that of the referring resource, unless the referring resource explicitly allows Referer to be sent. A user agent MUST NOT send a Referer header field in an unsecured HTTP request if the referring resource was accessed with a secure protocol.

In other words, it's not guaranteed that this Referer header is set. One can of course choose to remove the query parameter.

aendruk 11 months ago [–]

Yes, that’s the part about interactions and consent. The intent then is to circumvent that? A case of those pesky matters of security and respect for human dignity getting in the way of SEO?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact