Bug 267000
| Summary: | document.referrer is empty when "Use advanced tracking and fingerprint protection" is enabled and referrer is cross-domain | ||
|---|---|---|---|
| Product: | WebKit | Reporter: | Bo Chulindra <bchulindra> |
| Component: | DOM | Assignee: | Nobody <webkit-unassigned> |
| Status: | RESOLVED WONTFIX | ||
| Severity: | Normal | CC: | ahmad.saleem792, charliew, mike, pvollan, wenson_hsieh, wilander |
| Priority: | P2 | Keywords: | InRadar |
| Version: | Safari 17 | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
Bo Chulindra
My request has a referrer and Referrer Policy is origin-when-cross-origin. When "Use advanced tracking and fingerprint protection" is OFF, document.referrer works as expected for that Referrer Policy (it's set to origin if cross domain or full referrer if same domain). However when "Use advanced tracking and fingerprint protection" is enabled, document.referrer is empty when the referrer is cross domain (it's the full referrer when same domain).
This behavior is unexpected and causing issues. I don't see this documented anywhere. Is this a bug or working as expected? If it's working as expected, can I get an explanation of what to expect with document.referrer and "Use advanced tracking and fingerprint protection"?
| Attachments | ||
|---|---|---|
| Add attachment proposed patch, testcase, etc. |
John Wilander
rdar://120491282
John Wilander
Thanks for filing, Bo! We met today and you got an explanation on this one. Resolving as Won't Fix which is Bugzilla's equivalent of Behaves Correctly.