1. 技术文章
  2. Is this behavior with the referrer when sending a XMLHttpRequest in Brave intended?

Is this behavior with the referrer when sending a XMLHttpRequest in Brave intended?

廉价感情. 提交于 2021-02-08 03:36:28

问题


var xhr = new XMLHttpRequest();

xhr.open('GET', 'https://httpbin.org', true);
xhr.send();

When running this simple code above from example.org, request headers in Chrome devtools shows this:

Host:httpbin.org
Origin:http://example.org
Referer:http://example.org

When running the same code in Brave, I get this:

Host:httpbin.org
Origin:https://example.org
Referer:https://httpbin.org

I feel that that the referrer being the same that that the host is a bug, but maybe I'm missing something. Should I report this?


回答1:


This behavior is intended.

We spoof cross-origin referer when '3rd party cookie block' is on.

Source



来源:https://stackoverflow.com/questions/41488690/is-this-behavior-with-the-referrer-when-sending-a-xmlhttprequest-in-brave-intend

标签
browser
xmlhttprequest
referrer
易学教程内所有资源均来自网络或用户发布的内容,如有违反法律规定的内容欢迎反馈
该文章没有解决你所遇到的问题?点击提问,说说你的问题,让更多的人一起探讨吧!