Remove obsolete CSP referrer directive (#34781)

mdn · Jul 11, 2024 · be35097 · be35097
1 parent bd401d0
commit be35097
Show file tree

Hide file tree

Showing 6 changed files with 1 addition and 75 deletions.
diff --git a/files/en-us/_redirects.txt b/files/en-us/_redirects.txt
@@ -12306,6 +12306,7 @@
 /en-US/docs/Web/HTTP/HTTP_response_codes /en-US/docs/Web/HTTP/Status
 /en-US/docs/Web/HTTP/Headers/Cache-Disposition /en-US/docs/Web/HTTP/Headers/Content-Disposition
 /en-US/docs/Web/HTTP/Headers/Content-Security-Policy/navigate-to /en-US/docs/Web/HTTP/Headers/Content-Security-Policy
+/en-US/docs/Web/HTTP/Headers/Content-Security-Policy/referrer /en-US/docs/Web/HTTP/Headers/Referrer-Policy
 /en-US/docs/Web/HTTP/Headers/Content-Security-Policy/require-sri-for /en-US/docs/Web/HTTP/Headers/Content-Security-Policy
 /en-US/docs/Web/HTTP/Headers/Cookie2 /en-US/docs/Web/HTTP/Headers/Cookie
 /en-US/docs/Web/HTTP/Headers/Feature-Policy /en-US/docs/Web/HTTP/Headers/Permissions-Policy

diff --git a/files/en-us/_wikihistory.json b/files/en-us/_wikihistory.json
@@ -99743,10 +99743,6 @@
  "modified": "2020-10-15T22:21:20.756Z",
  "contributors": ["mfuji09", "bershanskiy"]
  },
- "Web/HTTP/Headers/Content-Security-Policy/referrer": {
- "modified": "2020-10-15T21:50:39.723Z",
- "contributors": ["bershanskiy", "Sheppy", "infuerno", "fscholz", "teoli"]
- },
  "Web/HTTP/Headers/Content-Security-Policy/report-to": {
  "modified": "2020-10-15T22:03:06.085Z",
  "contributors": [

diff --git a/files/en-us/web/http/headers/content-security-policy/index.md b/files/en-us/web/http/headers/content-security-policy/index.md
@@ -170,9 +170,6 @@ Reporting directives control the reporting process of CSP violations. See also t
 
 - {{CSP("block-all-mixed-content")}} {{deprecated_inline}}
  - : Prevents loading any assets using HTTP when the page is loaded using HTTPS.
-- {{CSP("referrer")}} {{deprecated_inline}} {{non-standard_inline}}
- - : Used to specify information in the [Referer](/en-US/docs/Web/HTTP/Headers/Referer) (sic) header for links away
- from a page. Use the {{HTTPHeader("Referrer-Policy")}} header instead.
 
 ## Values
 

diff --git a/files/en-us/web/http/headers/content-security-policy/referrer/index.md b/files/en-us/web/http/headers/content-security-policy/referrer/index.md
diff --git a/files/en-us/web/http/headers/referer/index.md b/files/en-us/web/http/headers/referer/index.md
@@ -69,6 +69,5 @@ Referer: https://example.com/
 
 - [HTTP referer on Wikipedia](https://en.wikipedia.org/wiki/HTTP_referer)
 - [Fetch](/en-US/docs/Web/API/Fetch_API): {{domxref("Request.referrerPolicy")}}
-- The obsolete {{HTTPHeader("Content-Security-Policy")}} {{HTTPHeader("Content-Security-Policy/referrer", "referrer")}} {{deprecated_inline}} directive.
 - [Same-origin policy](/en-US/docs/Web/Security/Same-origin_policy)
 - [Tighter Control Over Your Referrers – Mozilla Security Blog](https://blog.mozilla.org/security/2015/01/21/meta-referrer/)
diff --git a/files/en-us/web/http/headers/referrer-policy/index.md b/files/en-us/web/http/headers/referrer-policy/index.md
@@ -188,6 +188,5 @@ All of these settings take the same set of values: `0 = no-referrer`, `1 = same-
 - [Web security > Referer header: privacy and security concerns](/en-US/docs/Web/Security/Referer_header:_privacy_and_security_concerns)
 - [HTTP referer on Wikipedia](https://en.wikipedia.org/wiki/HTTP_referer)
 - When using [Fetch](/en-US/docs/Web/API/Fetch_API): {{domxref("Request.referrerPolicy")}}
-- The obsolete {{HTTPHeader("Content-Security-Policy")}}'s {{HTTPHeader("Content-Security-Policy/referrer", "referrer")}} {{deprecated_inline}} directive.
 - [Same-origin policy](/en-US/docs/Web/Security/Same-origin_policy)
 - [Tighter Control Over Your Referrers – Mozilla Security Blog](https://blog.mozilla.org/security/2015/01/21/meta-referrer/)