FetchMetadataHeaderTrait
Fetch Metadata request HTTP header names (W3C Fetch Metadata).
Browser-set Sec-Fetch-* headers describing the context of a request, used
server-side as a defence against CSRF, clickjacking and cross-site leaks.
Mixed into HttpHeader.
Tags
Table of Contents
Constants
- SEC_FETCH_DEST : string = 'Sec-Fetch-Dest'
- `Sec-Fetch-Dest` — Destination of the request (`document`, `image`, `script`, …).
- SEC_FETCH_MODE : string = 'Sec-Fetch-Mode'
- `Sec-Fetch-Mode` — Request mode (`navigate`, `cors`, `no-cors`, `same-origin`, …).
- SEC_FETCH_SITE : string = 'Sec-Fetch-Site'
- `Sec-Fetch-Site` — Relationship between origin and target (`same-origin`, `cross-site`, …).
- SEC_FETCH_USER : string = 'Sec-Fetch-User'
- `Sec-Fetch-User` — Set to `?1` when the request was triggered by a user activation.
Constants
SEC_FETCH_DEST
`Sec-Fetch-Dest` — Destination of the request (`document`, `image`, `script`, …).
public
string
SEC_FETCH_DEST
= 'Sec-Fetch-Dest'
SEC_FETCH_MODE
`Sec-Fetch-Mode` — Request mode (`navigate`, `cors`, `no-cors`, `same-origin`, …).
public
string
SEC_FETCH_MODE
= 'Sec-Fetch-Mode'
SEC_FETCH_SITE
`Sec-Fetch-Site` — Relationship between origin and target (`same-origin`, `cross-site`, …).
public
string
SEC_FETCH_SITE
= 'Sec-Fetch-Site'
SEC_FETCH_USER
`Sec-Fetch-User` — Set to `?1` when the request was triggered by a user activation.
public
string
SEC_FETCH_USER
= 'Sec-Fetch-User'