This page provides tests for cases where we intentionally don't want to randomize an API's response, usually because the API is being used in a non-standard way that does not provide fingerprinting surface.
Generally we want to farble and/or clamp the accept-language
header to remove or minimize the fingerprinting surface. However,
when a site explicitly sets the accept-language
value, its no longer a fingerprinting surface, and so we should not
modify it (i.e., we should use the value the page set).
For the test to pass all the following should be true:
accept-language
valuebr-AVE.
| Frames | Workers | |||||
|---|---|---|---|---|---|---|
| API | Case | Current | Local | Remote | Service | Web |
| Fetch | ||||||
| Default | |
|
|
|
|
|
| Controlled | |
|
|
|
|
|
| AJAX | ||||||
| Default | |
|
|
|
|
|
| Controlled | |
|
|
|
|
|