HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
404
Total Requests
1
Total Time
478 ms

  • https://git.omniglitch.me/upvc-windows-doors6471

    Status
    404
    Message
    Not Found
    Time
    478 ms
  • IP
    168.119.98.157
    View Map

  • Timing

    Wait

    1 ms

    DNS

    188 ms

    TCP

    99 ms

    Request

    0 ms

    First Byte

    94 ms

    Download

    1 ms

    Total

    478 ms

  • HTTP Headers

    Alt-Svc

    h3=":443"; ma=2592000

    Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.

    • Service

      • h3 - :443

    • Service

      • ma - 2592000 (30 days)

        Max age for the alternative (seconds).

    Cache-Control

    max-age=0, private, must-revalidate, no-transform

    Inform all caching mechanisms from server to client whether they may cache this object.

    • Max-Age

      0

      The time a browser should remember a site can only be accessed with https (seconds).

    • private

      May only be stored by a browser cache.

    • must-revalidate

      Stale caches must not be used.

    • no-transform

      Intermediate cache or proxy cannot modify the response or certain headers.

    Content-Length

    11

    The length of the response body in octets (8-bit bytes).

    Content-Type

    text/plain;charset=utf-8

    The MIME type of this content.

    • Type

      text/plain

    • Description

      text file

    • Charset

      utf-8

    Date

    Wed, 13 May 2026 17:24:49 GMT

    The date and time that the message was sent.

    Set-Cookie

    i_like_gitea=390657195d318464; Path=/; HttpOnly; Secure; SameSite=Lax

    A cookie sent from the server to be set on the client

    • i_like_gitea

      390657195d318464

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Strict-Transport-Security

    max-age=31536000; includeSubDomains

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      31536000 (1 year)

      The time a browser should remember a site can only be accessed with https (seconds).

    • includesubdomains

      max-age applies to subdomains as well.

    Via

    1.1 Caddy

    Added by proxies to track a request through proxies and to avoid loops.

    • Version

      1.1

      Protocol version.

    • Host

      Host name.

    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    X-Frame-Options

    SAMEORIGIN

    Clickjacking protection.

    SAMEORIGIN - No rendering if origin mismatch.