|
@@ -448,8 +448,8 @@ fun webFilterChain(http: ServerHttpSecurity): SecurityWebFilterChain {
|
|
|
[[webflux-headers-referrer]]
|
|
[[webflux-headers-referrer]]
|
|
|
== Referrer Policy
|
|
== Referrer Policy
|
|
|
|
|
|
|
|
-By default, Spring Security does not add xref:features/exploits/headers.adoc#headers-referrer[Referrer Policy] headers.
|
|
|
|
|
-You can enable the Referrer Policy header using configuration as shown below:
|
|
|
|
|
|
|
+Spring Security adds the xref:features/exploits/headers.adoc#headers-referrer[Referrer Policy] header by default with the directive `no-referrer`.
|
|
|
|
|
+You can change the Referrer Policy header using configuration as shown below:
|
|
|
|
|
|
|
|
.Referrer Policy Configuration
|
|
.Referrer Policy Configuration
|
|
|
[tabs]
|
|
[tabs]
|
Marcus Da Coregio