Early Access
referrer
Learn how to use the referrer meta tag to improve your site.
Specifies information sent as a Referrer header when the user navigates from the current page to an external link. It allows you to control the amount of referrer information included in requests.
Parameters
<meta name="referrer" content="no-referrer" />
<meta name="referrer" content="no-referrer-when-downgrade" />
<meta name="referrer" content="origin" />
<meta name="referrer" content="origin-when-cross-origin" />
<meta name="referrer" content="same-origin" />
<meta name="referrer" content="strict-origin" />
<meta name="referrer" content="strict-origin-when-cross-origin" />
<meta name="referrer" content="unsafe-url" />
Code Examples
<meta name="referrer" content="origin" />
<meta name="referrer" content="strict-origin-when-cross-origin" />
<meta name="referrer" content="no-referrer" />
<meta name="referrer" content="unsafe-url" />
Recommendations
- Set a Referrer PolicyWithout a "referrer" meta tag, browsers use "no-referrer-when-downgrade", potentially leaking data over unsecured connections.
- Increasing PrivacyUsing "same-origin" can help prevent leaking sensitive information to third-party websites while navigating away from your site.
Related Documentation
Related Meta Tags
Content-Security-Policy
Defines which dynamic resources are allowed to load, thus helping to prevent cross-site scripting attacks, data injection, and other malicious attempts to exploit web page vulnerabilities.
<meta http-equiv="Content-Security-Policy" content="default-src 'self'; script-src 'self' https://apis.google.com;">
referrer
Specifies information sent as a Referrer header when the user navigates from the current page to an external link. It allows you to control the amount of referrer information included in requests.
<meta name="referrer" content="origin">
refresh
Used to redirect the user to a new URL after a certain number of seconds, or to refresh the current page. While it can be useful for redirecting users or refreshing content, its usage is generally discouraged in favor of server-side redirects or JavaScript for a better user experience and performance.
<meta http-equiv="refresh" content="5;url=http://example.com">
Community