HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 74 ms
https://funfreshideas.com/- Status
- 200
- Message
- OK
- Time
- 74 ms
- IP
- 23.227.38.65
Timing
Wait
0 ms
DNS
6 ms
TCP
2 ms
Request
0 ms
First Byte
59 ms
Download
0 ms
Total
74 ms
HTTP Headers
- Date
Thu, 21 Nov 2024 09:40:04 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=utf-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
utf-8
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- X-Sorting-Hat-Podid
283
- X-Sorting-Hat-Shopid
89200132380
- X-Storefront-Renderer-Rendered
1
- Etag
W/"cacheable:9107c2481aab6cacf5693616d2b11e90"
An identifier for a specific version of a resource.
Validator
weak
A weak tag is easier to generate and prevents byte range caching.
Tag
cacheable:9107c2481aab6cacf5693616d2b11e90
- Link
<https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin, <//funfreshideas.com/cdn/shop/t/2/assets/component-localization-form.css?v=170315343355214948141728265477>; as="style"; rel="preload", <//funfreshideas.com/cdn/shop/files/funfreshideas-logo-2-edited.png?v=1728613460&width=600>; as="image"; rel="preload"; imagesrcset="//funfreshideas.com/cdn/shop/files/funfreshideas-logo-2-edited.png?v=1728613460&width=120 120w, //funfreshideas.com/cdn/shop/files/funfreshideas-logo-2-edited.png?v=1728613460&width=180 180w, //funfreshideas.com/cdn/shop/files/funfreshideas-logo-2-edited.png?v=1728613460&width=240 240w"; imagesizes="(max-width: 240px) 50vw, 120px"
Used to express a typed relationship with another resource.
Link
- rel - preconnect
Link
- rel - preconnect
- crossorigin
Link
//funfreshideas.com/cdn/shop/t/2/assets/component-localization-form.css?v=170315343355214948141728265477
- as - style
- rel - preload
Link
//funfreshideas.com/cdn/shop/files/funfreshideas-logo-2-edited.png?v=1728613460&width=600
- as - image
- rel - preload
- imagesrcset - //funfreshideas.com/cdn/shop/files/funfreshideas-logo-2-edited.png?v
- imagesizes - (max-width: 240px) 50vw 120px
- X-Shopify-Nginx-No-Cookies
0
- Set-Cookie
secure_customer_sig=; path=/; expires=Fri, 21 Nov 2025 09:40:04 GMT; secure; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
secure_customer_sig
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Fri, 21 Nov 2025 09:40:04 GMT
When the cookie should expire.
secure
The cookie is only sent when requesting from a https domain.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
localization=ID; path=/; expires=Fri, 21 Nov 2025 09:40:04 GMT
A cookie sent from the server to be set on the client
localization
ID
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Fri, 21 Nov 2025 09:40:04 GMT
When the cookie should expire.
- Set-Cookie
_tracking_consent=%7B%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22p%22%3A%22%22%2C%22s%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%2C%22region%22%3A%22USNY%22%2C%22reg%22%3A%22%22%2C%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22sale_of_data_region%22%3Afalse%2C%22consent_id%22%3A%22BE0D4D17-82f6-437B-bbf4-3090684c6257%22%7D; domain=funfreshideas.com; path=/; expires=Fri, 21 Nov 2025 09:40:04 GMT; SameSite=Lax
A cookie sent from the server to be set on the client
_tracking_consent
%7B%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22p%22%3A%22%22%2C%22s%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%2C%22region%22%3A%22USNY%22%2C%22reg%22%3A%22%22%2C%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22sale_of_data_region%22%3Afalse%2C%22consent_id%22%3A%22BE0D4D17-82f6-437B-bbf4-3090684c6257%22%7D
Cookie name and value.
Domain
funfreshideas.com
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Fri, 21 Nov 2025 09:40:04 GMT
When the cookie should expire.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_cmp_a=%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22sale_of_data_region%22%3Afalse%7D; domain=funfreshideas.com; path=/; expires=Fri, 22 Nov 2024 09:40:04 GMT; SameSite=Lax
A cookie sent from the server to be set on the client
_cmp_a
%7B%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22sale_of_data_region%22%3Afalse%7D
Cookie name and value.
Domain
funfreshideas.com
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Fri, 22 Nov 2024 09:40:04 GMT
When the cookie should expire.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_shopify_y=d0a6c18a-f763-4107-9f54-be67358c8277; Expires=Fri, 21-Nov-25 09:40:04 GMT; Domain=funfreshideas.com; Path=/; SameSite=Lax
A cookie sent from the server to be set on the client
_shopify_y
d0a6c18a-f763-4107-9f54-be67358c8277
Cookie name and value.
Expires
Fri, 21-Nov-25 09:40:04 GMT
When the cookie should expire.
Domain
funfreshideas.com
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_shopify_s=6477b369-dfd5-4e60-b283-3d9e69228217; Expires=Thu, 21-Nov-24 10:10:04 GMT; Domain=funfreshideas.com; Path=/; SameSite=Lax
A cookie sent from the server to be set on the client
_shopify_s
6477b369-dfd5-4e60-b283-3d9e69228217
Cookie name and value.
Expires
Thu, 21-Nov-24 10:10:04 GMT
When the cookie should expire.
Domain
funfreshideas.com
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_orig_referrer=; Expires=Thu, 05-Dec-24 09:40:04 GMT; Domain=funfreshideas.com; Path=/; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
_orig_referrer
Cookie name and value.
Expires
Thu, 05-Dec-24 09:40:04 GMT
When the cookie should expire.
Domain
funfreshideas.com
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_landing_page=%2F; Expires=Thu, 05-Dec-24 09:40:04 GMT; Domain=funfreshideas.com; Path=/; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
_landing_page
%2F
Cookie name and value.
Expires
Thu, 05-Dec-24 09:40:04 GMT
When the cookie should expire.
Domain
funfreshideas.com
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- X-Cache
hit, server
Indicates whether a cache was used to server this response.
- X-Frame-Options
DENY
Clickjacking protection.
DENY - No rendering within frame.
- Content-Security-Policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
The content security policy allows the server to determine what resources the user is allowed to load.
block-all-mixed-content
Prevent mixed content access.
Frame-Ancestors
Define valid parents for frame, iframe, embed, object, and applet.
- 'none'
upgrade-insecure-requests
Treat insecure URLs as though they are secure.
- Strict-Transport-Security
max-age=7889238
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
7889238 (91 days 7 hours 27 minutes 18 seconds)
The time a browser should remember a site can only be accessed with https (seconds).
- X-Shopid
89200132380
- X-Shardid
283
- Content-Language
en-ID
The natural language or languages of the intended audience for the enclosed content.
en-ID - English
- Powered-By
Shopify
- Server-Timing
processing;dur=14;desc="gc:1", db;dur=5, db_async;dur=2.436, asn;desc="14061", edge;desc="EWR", country;desc="US", theme;desc="171253006620", pageType;desc="index", servedBy;desc="xnvl", requestID;desc="e912cda6-e2d4-45d5-8c89-9e539901e247-1732182004"
Server metrics for the request.
Processing
gc:1
- dur - 14
Db
- dur - 5
Db_async
- dur - 2.436
Asn
14061
Edge
EWR
Country
US
Theme
171253006620
Pagetype
index
Servedby
xnvl
Requestid
e912cda6-e2d4-45d5-8c89-9e539901e247-1732182004
- X-Dc
gcp-us-east1,gcp-us-east1,gcp-us-east1
- X-Request-Id
e912cda6-e2d4-45d5-8c89-9e539901e247-1732182004
- Alt-Svc
h3=":443"; ma=86400
Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.
Service
- h3 - :443
Service
- ma - 86400 (1 day)
Max age for the alternative (seconds).
- ma - 86400 (1 day)
- Cf-Cache-Status
DYNAMIC
Encoded information about your request from Cloudflare.
DYNAMIC - This is not cached by default.
- Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HBmYkDYmrVlV5lYgXNDimUH%2B3sjgQDsIYhBocxNd8gfDEwehTvszvlNqNyK%2FPX87RrsizrT56eQmkw1%2BmrNZqBgFJqLsGcd2a2lftGW%2FqvuUq6lQL0dU25pfXcKEgbXVnvmT"}],"group":"cf-nel","max_age":604800}
Report to.
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=HBmYkDYmrVlV5lYgXNDimUH%2B3sjgQDsIYhBocxNd8gfDEwehTvszvlNqNyK%2FPX87RrsizrT56eQmkw1%2BmrNZqBgFJqLsGcd2a2lftGW%2FqvuUq6lQL0dU25pfXcKEgbXVnvmT"}
Group
cf-nel
Max_age
604800
- Nel
{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Configure network request logging.
Success_fraction
0.01
Report_to
cf-nel
Max_age
604800
- Server-Timing
cfRequestDuration;dur=55.999994
Server metrics for the request.
Cfrequestduration
- dur - 55.999994
- X-Xss-Protection
1; mode=block
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Permitted-Cross-Domain-Policies
none
Specifies if a cross-domain policy is allowed.
none - No policy is allowed.
- X-Download-Options
noopen
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Ray
8e5fb75acb5f18c4-EWR
Encoded information about your request from Cloudflare.