Package io.camunda.security.configuration.headers

Class ReferrerPolicyConfig

java.lang.Object

io.camunda.security.configuration.headers.ReferrerPolicyConfig

public class ReferrerPolicyConfig
extends Object

Configures Referrer-Policy header to control referrer information leakage.

The Referrer-Policy header controls how much information about the origin page is included in the Referer header when navigating to other pages or loading resources. This helps prevent sensitive information leakage through URLs.

Default: STRICT_ORIGIN_WHEN_CROSS_ORIGIN - This balanced default: - Sends full URL (minus auth/fragment) for same-origin requests - Sends only origin (protocol + domain) for cross-origin HTTPS→HTTPS - Sends nothing for HTTPS→HTTP (preventing secure data leakage)

This prevents several privacy/security issues: - Leaking sensitive URL parameters (tokens, session IDs, personal data) - Exposing internal URL structures to third parties - Revealing user navigation patterns to external sites - Search query exposure in referrer URLs

Common scenarios requiring stricter policies: - Password reset pages with tokens in URLs - Admin panels with sensitive paths - Search results with private queries - Authenticated areas with user-specific URLs

See Also:

• MDN: Referrer-Policy
• MDN: Referer header privacy concerns

Constructor Summary

Constructors

Constructor	Description
ReferrerPolicyConfig()

Method Summary

Modifier and Type	Method	Description
ReferrerPolicy	getValue()
void	setValue(ReferrerPolicy value)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details

ReferrerPolicyConfig

public ReferrerPolicyConfig()

Method Details

getValue

public ReferrerPolicy getValue()

setValue

public void setValue(ReferrerPolicy value)