I was under impression, all the modern browsers do not allow edit/inject request headers like "referer" and "origin"
And for a matter of fact, I h
