Auto Referer
291 users
Developer: HASH(0x55dc24eae7d0)
Version: 0.8.51
Updated: March 16, 2025
Available in the
Chrome Web Store
Chrome Web Store
Install & Try Now!
Liquid Death Mountain Water - 16.9 fl oz
Utilitech 20-Count Butt Splice Wire Connectors in Red | 15-121L-UT
Trump President For 2024 2024 Poster
Mr. Pen Scientific Calculator, 2 Line, Scientific Calculators, Scientific Calculators for Students, Fraction Calculator
Twizzlers 32 oz Strawberry Twists, Red
Ardell Demure Black False Eyelashes
Control HTTP Referer to protect privacy and not break web. Open source at https://github.com/garywill/au toReferer
Referer policy:
1. For webs' top frame (i.e. clicking link, navigating, redirecting etc.):
1). If origin and target url have same domain, allow trimmed referer
2). If origin and target url have different domain, no referer
2. For in-page resources (images, videos, js, css etc.), allow trimmed referer (this is **the key to not break** most webs, also a balance between privacy and experience)
3. Trim referer: Any referer should be no more than `http(s)://domain-name:port/`
4. Not allow referer that not starts with "http" or "https". (Please feedback if you find something broken due to this)
5. No referer when downgrade from HTTPS/WSS to HTTP/WS
We believe that can protect privacy enough and won't break web.
If user find a web broken, user can temporary set this addon disabled via toolbar button for:
- this one tab
- this one tab and new tabs opened by this tab
- this one window (Firefox only)
- globally
(above can be set as keyboard shortcuts)
there's showy toolbar button badge indicating disabling status.
## Notice
Due to browser bug on javascript `document.referrer` , using a regular referer controlling addon you can get 70% of expected protection until they fix that bug.
So, we've implemented a workaround to improve protection to 85%. Please enable workaround in addon settings .
This addon doesn't use content script. Content script hiding `document.referrer` is not 100% reliable.
Instead, we use this workaround to kill `document.referrer`:
Cancel all cross-domain navigating requests and make freshnew ones, like directly hit (currently only implemented for GET method and main frame, other methods and sub-frames remain as is)
## Allowlist
We currently have built-in allowlist, for the purpose of not breaking some websites. Some companies have many different websites with different domains. Some of their functionality are based on redirecting between their websites. Some of them check referer.
## Disclaimer
This open souce addon comes with no warranty. Use on you own risk!
Referer policy:
1. For webs' top frame (i.e. clicking link, navigating, redirecting etc.):
1). If origin and target url have same domain, allow trimmed referer
2). If origin and target url have different domain, no referer
2. For in-page resources (images, videos, js, css etc.), allow trimmed referer (this is **the key to not break** most webs, also a balance between privacy and experience)
3. Trim referer: Any referer should be no more than `http(s)://domain-name:port/`
4. Not allow referer that not starts with "http" or "https". (Please feedback if you find something broken due to this)
5. No referer when downgrade from HTTPS/WSS to HTTP/WS
We believe that can protect privacy enough and won't break web.
If user find a web broken, user can temporary set this addon disabled via toolbar button for:
- this one tab
- this one tab and new tabs opened by this tab
- this one window (Firefox only)
- globally
(above can be set as keyboard shortcuts)
there's showy toolbar button badge indicating disabling status.
## Notice
Due to browser bug on javascript `document.referrer` , using a regular referer controlling addon you can get 70% of expected protection until they fix that bug.
So, we've implemented a workaround to improve protection to 85%. Please enable workaround in addon settings .
This addon doesn't use content script. Content script hiding `document.referrer` is not 100% reliable.
Instead, we use this workaround to kill `document.referrer`:
Cancel all cross-domain navigating requests and make freshnew ones, like directly hit (currently only implemented for GET method and main frame, other methods and sub-frames remain as is)
## Allowlist
We currently have built-in allowlist, for the purpose of not breaking some websites. Some companies have many different websites with different domains. Some of their functionality are based on redirecting between their websites. Some of them check referer.
## Disclaimer
This open souce addon comes with no warranty. Use on you own risk!
Related
IMTFusion
1,000+
Policy Control
426
Referer Control
100,000+
NoRef
52
Request Header Hook
131
ClientRects Fingerprint Defender
1,000+
Simple Privacy Settings
883
Link Protector
277
LAN port scan forbidder
276
Privci.io: Smart Personal Data Manager
112
Referer Spoofer
379
Page Load Optimizer
307
HTTP Header Modifier
2,000+
Get Referrer URL
7,000+
NoRefer
387
Ping Blocker
479
No Opener, No Phishers
442
WebGPU Fingerprint Defender
2,000+
Big Search
756
Intercept Redirect
259
NoDetour
437
Origin Requests Only (Firewall)
486
Privacy Tweaks
6,000+
All Fingerprint Defender
10,000+