Closed andersju closed 6 years ago
We should give a green "Referrers not leaked" result if a site uses the same-origin policy (meaning referrers are not sent when making cross-origin requests), and also recommend it as an alternative to no-referrer once it gets more browser support.
same-origin
no-referrer
Currently only Firefox (>= 52) appears to support same-origin (see MDN browser compatibility page and the open Chromium bug).
We should give a green "Referrers not leaked" result if a site uses the
same-origin
policy (meaning referrers are not sent when making cross-origin requests), and also recommend it as an alternative tono-referrer
once it gets more browser support.Currently only Firefox (>= 52) appears to support
same-origin
(see MDN browser compatibility page and the open Chromium bug).