View in EnglishAlways switch to English

Upgrade-Insecure-Requests 标头

Baseline Widely available

This feature is well established and works across many devices and browser versions. It’s been available across browsers since 2018年4月.

HTTPUpgrade-Insecure-Requests请求标头向服务器发送一个信号，表明客户端偏好加密且经过认证的响应，并且客户端能够成功处理upgrade-insecure-requestsCSP 指令。

标头类型	请求标头
禁止修改的请求标头	否

语法

http

Upgrade-Insecure-Requests: <boolean>

客户端的请求会向服务器表明它支持upgrade-insecure-requests 的升级机制：

http

GET / HTTP/1.1Host: example.comUpgrade-Insecure-Requests: 1

服务器现在可以将请求重定向到站点的安全版本。可以使用Vary 标头，以避免缓存向不支持升级机制的客户端提供相同的站点内容。

http

Location: https://example.com/Vary: Upgrade-Insecure-Requests

Specification
Upgrade Insecure Requests # preference

This page was last modified on2025年12月11日 byMDN contributors.