It's possible for the origin to add user sensitive data in the URL. It's bad practice, but I'd say there's 99.99999% chance that at least a handful of sites is doing that right now.
In that event, the target site can access user data without its consent from the referrer header.
I was just pissed at Google Analytics recently and thinking about building something better and started researching, your article caught my attention ๐
Hash thats clever ๐ I was thinking about just some unique user id. Thanks.
โโโโ
On URL. Privacy reasons I get and I know that UTMs are more reliable but what are the security issues of referrals?
It's possible for the origin to add user sensitive data in the URL. It's bad practice, but I'd say there's 99.99999% chance that at least a handful of sites is doing that right now.
In that event, the target site can access user data without its consent from the referrer header.
Alright yeah thatโs problematic. Never thought of that ๐คทโโ๏ธ
Me neither!.. ๐
I was just pissed at Google Analytics recently and thinking about building something better and started researching, your article caught my attention ๐
Haha nice :D
My disagreement with Google Analytics got on this path to yeah. What encouraged me to start building my own analytics were those guys: usefathom.com
Before that I never thought that one could build reliable custom analytics. But apparently two developers did.