noopener keyword for the
rel attribute of the
<form> elements instructs the browser to navigate to the target resource without granting the new browsing context access to the document that opened it — by not setting the
Window.opener property on the opened window (it returns
This is especially useful when opening untrusted links, in order to ensure they cannot tamper with the originating document via the
Window.opener property (see About rel=noopener for more details), while still providing the
Referer HTTP header (unless
noreferrer is used as well).
Note that when
noopener is used, nonempty target names other than
_parent are all treated like
_blank in terms of deciding whether to open a new window/tab.
<a> elements now implicitly provides the same
rel behavior as setting
rel="noopener" which does not set
window.opener. See browser compatibility for support status.
|HTML Standard |
BCD tables only load in the browser