Sec-Fetch-User

The HTTP Sec-Fetch-User request header is included by the client when the HTTP request is initiated by user activation.

Usage

The HTTP Sec-Fetch-User request header is sent by the client to help the server identify the source of a HTTP request. If it was originated by the user then this HTTP header will be included with a directive of ?1. There are no other directives.

Example

In this example, the HTTP request for an image, residing on the same origin, was initiated by the user.

Request

Sec-Fetch-User: ?1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin

Takeaway

The HTTP Sec-Fetch-User request header is used to inform the server that the HTTP request originated as a result of the user’s activation.

See also

Last updated: June 20, 2022