On Thu, Feb 10, 2011 at 09:16:05AM +0100, Sake Blok wrote:
> Funny, I would have expected this to (a "https://xxx referer in the http request), but I just tested with Firefox and whenever I follow a link on an https page to a non-https page (either on the same site or a different site), there is just no "Referer:" header. I'm not sure how other browsers are dealing with this, so I checked the RFC[1]. It states in 15.1.3:
>
> Clients SHOULD NOT include a Referer header field in a (non-secure)
> HTTP request if the referring page was transferred with a secure
> protocol.
>
> So there is your answer why you don't get the referer information.
Thanks for understanding the question better than me and posting the
background RFC :). I thought the question was "can you see the HTTP
response redirect to the http site"