Why is 'noreferrer' not working on links?

Question

I can't work out how to get rid of the referrer that keeps getting appended to URL

My link

<a aria-label="Book" target="_blank" class="book-link" rel="noopener"` or `rel="noreferrer" href="<?=$site->book_link()->html()?>">...</a>

My meta

<meta name="referrer" content="no-referrer">

It keeps appending this and breaking links /&referrerUrl=https%3A%2F%2Fwww.mysite.com%2F

If this didn't have a bounty, I'd vote to close as duplicate of [Multiple values for rel attribute](https://stackoverflow.com/q/1878657) and [Can an HTML element have the same attribute twice?](https://stackoverflow.com/q/26341507) — Siguza, Dec 05 '21 at 01:08
Are you sure the PHP output `=$site->book_link()->html()?>` isn't directly placing this attribute to the URL? — Skully, Dec 05 '21 at 01:50
`rel="noreferrer"` controls the `Referer` header and related stuff. `&referrerUrl=…` isn’t a broader web thing, it’s just some parameter that’s already in your link or being added by a script. — Ry-, Dec 05 '21 at 02:00
`Book-link: https://www.sevenrooms.com/reservations/ilbaretto` this is copied direct from the sites .txt file so the link is correct. I have no idea what script would be specifically targeting this one link.. any ideas on how to debug this? — Burger Sasha, Dec 05 '21 at 11:56

user14665310 · Answer 1 · 2021-12-05T04:36:11.867

4

This referrer that you are getting is not effected by this meta tag because the meta tag is meant for inside javascript to use document.referrer to get the referrer url in your browser or from your webserver for tracking purposes.

The referrer in your link is either because of some script or front end framework you are using or because of a backend framework or language like php.

To be able to solve your problem better we will need to know more about your frontend and backend stack.

Consequently this question is tagged wrong. It should be tagged with javascript or php.

edited Dec 05 '21 at 04:36

answered Dec 05 '21 at 04:26

user14665310

524
4
13

Thanks for your response! I am using Kirby a php based CMS. None of my other links are doing this and I have tried both adding the URL via the CMS and hard-coding with the same result – Burger Sasha Dec 05 '21 at 11:49
are you using anything in the frontend? – user14665310 Dec 05 '21 at 14:32

score 0 · Answer 2 · answered Dec 05 '21 at 13:48

It's simple "no-referrer", which specifies that no referrer information is to be sent along with requests made from a particular request client to any origin. The header will be omitted entirely.

If a document at https://techcaregn.com/page.html sets a policy of "no-referrer", then navigations to https://techcaregen.com/ (or any other URL) would send no Referer header. It is my personal opinion .

Why is 'noreferrer' not working on links?

2 Answers2