Ignoring referrer policy

Hi everyone!
I have webpage domain1@com with SSL+DNS from Cloudflare and I use add_header Referrer-Policy “origin” on domain level and I send to this page Chrome browser 85 version and higher traffic only. From this page traffic go to domain2@com (it also have SSL) where I see referrer URL. And sometimes I see in referrer URL this parametres ?key=4444ffs but it must be only domain1@com . How it can be possible? All links on the page domain1@com is https and % of not secure requests is small (see screenshot) on domain1@com

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.