ISSUE-65: Does "no referrer" specify a state or is it a token? is a token with a space problematic?
Does "no referrer" specify a state or is it a token? is a token with a space problematic?
- State:
- RAISED
- Product:
- Referrer Policy
- Raised by:
- Opened on:
- 2014-08-27
- Description:
- I agree that this is potentially confusing. There are three things:
1. There is a referrer policy named "No Referrer": http://w3c.github.io/webappsec/specs/referrer-policy/#referrer-policy-state-no-referrer
2. There is a CSP directive value of "no-referrer", which sets the protected resource's referrer policy to "No Referrer". I need to fix the algorithm here to accept the token values. I'll take care of that in a moment.
3. There is a Fetch token named "no referrer", which tells Fetch not to send a 'referer' header.
I think I just need to do work for #2. I'll update that shortly.
3. - Related Actions Items:
- No related actions
- Related emails:
- No related emails
Related notes:
No additional notes.
Display change log