发表新帖
发表新帖

HTTP Referer not always being passed

前端 未结
关注
6 1961
时光说笑
时光说笑 2020-12-17 17:44

I have an application which records users visits. None of these visits are directly accessed, 100% of these visits are referred from another site.

I am passing

相关标签:
6条回答
  • 无人共我
    2020-12-17 18:04

    Browsers sometimes will include the referer in the request. But it is not mandatory to do so (the referer is 100% voluntary). Indeed there are various privacy and security issues surrounding the referer (for example, if an HTTPS site refers you to an HTTP site, the browser should not include the referring site as the referer). So don't rely on it.

    0 讨论(0)
  • 轮回少年
    2020-12-17 18:10

    It is common when you are stuck finding why it is missing: - Sometime your referer is https and you are on http, it will be lost.

    Otherwise: - User accessing by inputing url directly. - A user has bookmarked and come from bookmarks. - Sometime user keep the url default for browser (similar like bookmark) - Proxy surfying may remove referer. - accessing website as bots (search engine)

    0 讨论(0)
  • 时光说笑
    2020-12-17 18:21

    When linking from one document to another in Internet Explorer 4.0 and later, the Referer header will not be sent when the link is from an HTTPS page to a non-HTTPS page. The Referer header also will not be sent when the link is from a non-HTTP(S) protocol, such as file://, to another page. for more info go to this link

    0 讨论(0)
  • 逝去的感伤
    2020-12-17 18:22
    1. Direct access to your page (typing URL in address bar or from bookmarks, history, etc)
    2. Browser settings (disabled referrer or empty)
    3. if someone requests page content with file_get_contents() function...
    0 讨论(0)
  • 自闭症患者
    2020-12-17 18:23

    If a user visits your site directly, there is no referrer. It's also possible they have set it up so their browser never sends the referrer.

    According to this answer, browsers do not necessarily send a referrer when doing a meta refresh.

    0 讨论(0)
  • 隐瞒了意图╮
    2020-12-17 18:28

    There are a couple of number of reasons why HTTP_REFERER might be blank.

    1. You have to understand it's an environment variable given by the browser. Meaning users can remove it or even change it, if they so intend to.
    2. Users accessing the link from a bookmark, history or by typing the link manually do not have a referer.
    3. IE has also been known to remove the referer in situations revolving around javascript. Such as window.open, window.location and even setting target="_blank" in anchors or meta refresh.
    4. Clicking an embedded link in a chat application, PDF/Word/Excel document, will also not set a referer.
    5. Using AJAX, file_get_contents, fopen and other similar functions in other languages will probably not set a referer request.
    6. cURL, fsockopen, applications that have browser-like components might not set a referer.

    There are probably more situations when this could happen, I'll update if I can think of anything that seems reasonable.

    0 讨论(0)
 看不清?
提交回复
热议问题