Project

General

Profile

Feature #586

Disable the Referer header on resource requests by default

Added by Soren Stoutner over 1 year ago. Updated 8 months ago.

Status:
New
Priority:
3.x
Start date:
06/22/2020
Due date:
% Done:

0%

Estimated time:

Description

https://redmine.stoutner.com/issues/246 removed it on the loading of all URLs, but not for resource requests.

History

#1

Updated by Soren Stoutner over 1 year ago

  • Subject changed from Create controls for the Referer header to Disable the Referer header on resource requests
  • Description updated (diff)
#2

Updated by Soren Stoutner 12 months ago

  • Priority changed from 4.x to 3.x

As part of this, there needs to be a domain setting that can specify the referer heading. Otherwise, some websites will not load.

#3

Updated by Soren Stoutner 12 months ago

  • Subject changed from Disable the Referer header on resource requests to Disable the Referer header on resource requests by default
#4

Updated by Soren Stoutner 8 months ago

It looks like this can be done using `shouldInterceptRequest()`.

https://developer.android.com/reference/android/webkit/WebViewClient#shouldInterceptRequest(android.webkit.WebView,%20android.webkit.WebResourceRequest)

It might also be possible to remove other undesirable headers at the same time, but further testing will be required to be sure and to assess the impact on the loading of requests.

Also available in: Atom PDF