Re: [whatwg] getting rid of anonymizing redirects

Peter Lepeska Wed, 08 Oct 2014 08:53:50 -0700

Okay. I assumed more granular control would be needed but if not then this
works great.


Thanks,

Peter

From:  Ilya Grigorik <igrigo...@gmail.com>
Date:  Wednesday, October 8, 2014 at 11:43 AM
To:  Peter Lepeska <bizzbys...@gmail.com>
Cc:  Chris Bentzel <cbent...@google.com>, WHAT Working Group
<wha...@whatwg.org>, <public-web-p...@w3.org>
Subject:  Re: [whatwg] getting rid of anonymizing redirects


On Wed, Oct 8, 2014 at 11:36 AM, Peter Lepeska <bizzbys...@gmail.com> wrote:
> Does this have implications for resource hints? Do we want the ability to
> specify ³noreferrer² for prerendered pages? Currently noreferrer only applies
> to the <a> tag.

My understanding is that you set a global policy, which would apply to all
requests:
https://w3c.github.io/webappsec/specs/content-security-policy/#directive-ref
errer

e.g. Content-Security-Policy: referrer no-referrer; (or equivalent meta
element)

ig

Re: [whatwg] getting rid of anonymizing redirects

Reply via email to