Hacker News new | past | comments | ask | show | jobs | submit login

[deleted]



That's not the case. The only case when browsers send no referer header is when an HTTP request is made from a page loaded over HTTPS. Cross-origin has nothing to do with that.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: