blob: 8d583a9364451fd1146e490d3c6106d593a4b007 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
|
---
title: Sec-Fetch-Site
slug: Web/HTTP/Headers/Sec-Fetch-Site
translation_of: Web/HTTP/Headers/Sec-Fetch-Site
---
<p>{{HTTPSidebar}}{{Draft}}</p>
<p>O cabeçalho de busca de metadados <strong><code>Sec-Fetch-Site</code></strong> indica a relação entre a origem do iniciador da requisição e a origem do recurso.</p>
<table class="properties">
<tbody>
<tr>
<th scope="row">Header type</th>
<td>{{Glossary("Fetch Metadata Request Header")}}</td>
</tr>
<tr>
<th scope="row">{{Glossary("Forbidden header name")}}</th>
<td>yes, since it has prefix <code>Sec-</code></td>
</tr>
<tr>
<th scope="row">{{Glossary("CORS-safelisted response header")}}</th>
<td></td>
</tr>
<tr>
<th scope="row">{{Glossary("CORS-safelisted request header")}}</th>
<td></td>
</tr>
</tbody>
</table>
<h2 id="Syntax">Syntax</h2>
<pre class="syntaxbox notranslate">Sec-Fetch-Site: cross-site
Sec-Fetch-Site: same-origin
Sec-Fetch-Site: same-site
Sec-Fetch-Site: none
</pre>
<h2 id="Values">Values</h2>
<dl>
<dt><code>cross-site</code></dt>
<dd></dd>
<dt><code>same-origin</code></dt>
<dd></dd>
<dt><code>same-site</code></dt>
<dd></dd>
<dt><code>none</code></dt>
<dd>This request does not relate to any context like site, origin, or frame. This can happen when user had initiated this request by, e.g. directly entering a URL in the address bar, opening a bookmark, or draging-and-dropping a file into the browser window.</dd>
</dl>
<h2 id="Examples">Examples</h2>
<p>TODO</p>
<h2 id="Specifications">Specifications</h2>
<table class="standard-table">
<thead>
<tr>
<th scope="col">Specification</th>
<th scope="col">Title</th>
</tr>
</thead>
<tbody>
<tr>
<td><a href="https://w3c.github.io/webappsec-fetch-metadata/#sec-fetch-site-header">Fetch Metadata Request Headers</a></td>
<td>The Sec-Fetch-Site HTTP Request Header</td>
</tr>
</tbody>
</table>
<h2 id="Browser_compatibility">Browser compatibility</h2>
<p>{{Compat("http.headers.Sec-Fetch-Site")}}</p>
<h2 id="See_also">See also</h2>
<ul>
<li>{{HTTPHeader("Sec-Fetch-Mode")}}</li>
<li>{{HTTPHeader("Sec-Fetch-User")}}</li>
<li>{{HTTPHeader("Sec-Fetch-Dest")}}</li>
</ul>
|
