Hi Fiddler Team,
I'm conducting an analysis on origin referer and have 4 scenarios:
- No Origin, No Referer
- No Origin, Referer Present
- Origin Present, Referer Missing
- Origin Present, Referer Present
Can you please help me to understand why origin and / or referer are missing (scenarios 1-3)?
Thanks!
1 Answer, 1 is accepted
Hello Eliza,
There may be specific reasons for the observed results, but common explanations exist for when the Origin is null or when the Referer is missing.
Check the following sources:
https://wiki.mozilla.org/Security/Origin - refer to the table called "When Origin is served (and when it is "null")"
https://www.rfc-editor.org/rfc/rfc2616#section-15.1.3 - see the below quote from the linked source
Clients SHOULD NOT include a Referer header field in a (non-secure) HTTP request if the referring page was transferred with a secure protocol.
Regards,
Nick Iliev
Progress Telerik
Love the Telerik and Kendo UI products and believe more people should try them? Invite a fellow developer to become a Progress customer and each of you can get a $50 Amazon gift voucher.