HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
200
Total Requests
1
Total Time
522 ms
  • IP
    23.227.38.65
    View Map

  • Timing

    Wait

    0 ms

    DNS

    2 ms

    TCP

    5 ms

    Request

    1 ms

    First Byte

    510 ms

    Download

    0 ms

    Total

    522 ms

  • HTTP Headers

    Date

    Fri, 26 Jun 2026 09:24:37 GMT

    The date and time that the message was sent.

    Content-Type

    text/html; charset=utf-8

    The MIME type of this content.

    Problems were detected with this header

    • Unknown MIME type.
    Connection

    keep-alive

    Control options for the current connection and list of hop-by-hop response fields.

    keep-alive - The client would like to keep the connection open.

    Report-To

    {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=AhgGnK1QT2IjtM9%2B1XOOwPnMpw%2BGK1Q6PbcgImJ%2FrSdIByVxYV58SPXHuARL%2BGPSSeOKIAefCSLfpf%2BE5oVHNlLYi3c%2FrxSbHjnie6l9Hp8aqqGkmnXb8NxjaLVzf6NzwNM%3D"}]}

    Report to.

    • Group

      cf-nel

    • Max_age

      604800

    • Endpoints

      • {"url":"https://a.nel.cloudflare.com/report/v4?s=AhgGnK1QT2IjtM9%2B1XOOwPnMpw%2BGK1Q6PbcgImJ%2FrSdIByVxYV58SPXHuARL%2BGPSSeOKIAefCSLfpf%2BE5oVHNlLYi3c%2FrxSbHjnie6l9Hp8aqqGkmnXb8NxjaLVzf6NzwNM%3D"}
    X-Dc

    gcp-us-east1,gcp-us-east1,gcp-us-east1

    Cf-Cache-Status

    DYNAMIC

    Encoded information about your request from Cloudflare.

    DYNAMIC - This is not cached by default.

    Set-Cookie

    localization=SG; path=/; expires=Sat, 26 Jun 2027 09:24:37 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • localization

      SG

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Sat, 26 Jun 2027 09:24:37 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    cart_currency=SGD; path=/; expires=Fri, 10 Jul 2026 09:24:37 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • cart_currency

      SGD

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Fri, 10 Jul 2026 09:24:37 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_y=57050d67-3759-4aae-818f-e395929cd963; domain=megafurniture.sg; path=/; expires=Sat, 26 Jun 2027 15:24:37 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_y

      57050d67-3759-4aae-818f-e395929cd963

      Cookie name and value.

    • Domain

      megafurniture.sg

      The client will only send the cookie when requesting from this domain.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Sat, 26 Jun 2027 15:24:37 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_s=4f47c04f-3cdc-4822-a234-8388824ce92d; domain=megafurniture.sg; path=/; expires=Fri, 26 Jun 2026 09:54:37 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_s

      4f47c04f-3cdc-4822-a234-8388824ce92d

      Cookie name and value.

    • Domain

      megafurniture.sg

      The client will only send the cookie when requesting from this domain.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Fri, 26 Jun 2026 09:54:37 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_essential=:AZ8DPtUHAAEAjWtMlaeHozE7pnb3NMdRgLE0E3cT-k0Uo8hbB6TcRTo1T85Emrsm8PAxfjQnBB3_ODRpK4f-cc4PwZArnWQQRa-awdlyJSNoPcnJrzg8KZ5Ww4Cx8wFfIQsVp4xWsTIKYtf9XsW-obsv6JdoF3z6wgElYo_j2eGnjwNE9EBVlDC0EYamWmjLiZZcda6iQESLgNUxksctJd4mfedZdm8H2T5lnM4ZeRA912BafUSIvglwwkSrSdpGaNwx4rROdy2BOBcMuNaa5aTu1N9JswFQNVVXG00qPIyjPGGgwCHIWW1fASIFtulGkZT3xG3-YDiI_5PWA8Zp35ylX2XbGvFA0B4YMg7Af9_NutCZ8US4UVHcPYvjhP9v-Jh7IAYV:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_essential

      :AZ8DPtUHAAEAjWtMlaeHozE7pnb3NMdRgLE0E3cT-k0Uo8hbB6TcRTo1T85Emrsm8PAxfjQnBB3_ODRpK4f-cc4PwZArnWQQRa-awdlyJSNoPcnJrzg8KZ5Ww4Cx8wFfIQsVp4xWsTIKYtf9XsW-obsv6JdoF3z6wgElYo_j2eGnjwNE9EBVlDC0EYamWmjLiZZcda6iQESLgNUxksctJd4mfedZdm8H2T5lnM4ZeRA912BafUSIvglwwkSrSdpGaNwx4rROdy2BOBcMuNaa5aTu1N9JswFQNVVXG00qPIyjPGGgwCHIWW1fASIFtulGkZT3xG3-YDiI_5PWA8Zp35ylX2XbGvFA0B4YMg7Af9_NutCZ8US4UVHcPYvjhP9v-Jh7IAYV:

      Cookie name and value.

    • Max-Age

      31536000 (1 year)

      Number of seconds until the cookie expires.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Priority

      High

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_analytics=:AZ8DPtaoAAEA9SkckMM60Cg7YOXVjN7pZQalWyECljqfdiRYloDDOFNq0k8waAw6zbgR0zsv5jgMM8FWpT1ejDrHkSghUpqeUWzMNVhMER6zWT9CyoGm0oLyLjCDUeRGO1x0Xi94rLqISq4nwV6QHOSrTNxrIDWR9IpoCYJ-rik:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_analytics

      :AZ8DPtaoAAEA9SkckMM60Cg7YOXVjN7pZQalWyECljqfdiRYloDDOFNq0k8waAw6zbgR0zsv5jgMM8FWpT1ejDrHkSghUpqeUWzMNVhMER6zWT9CyoGm0oLyLjCDUeRGO1x0Xi94rLqISq4nwV6QHOSrTNxrIDWR9IpoCYJ-rik:

      Cookie name and value.

    • Max-Age

      31536000 (1 year)

      Number of seconds until the cookie expires.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Priority

      High

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_marketing=:AZ8DPtapAAEAuvn1tiZ1icOjQZ3cs5Xw4GILSeG1W1kU2g0tgPmpSUnDwS6opkpgsNm1dKwdAw-yDUGRKbdsv4i9:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_marketing

      :AZ8DPtapAAEAuvn1tiZ1icOjQZ3cs5Xw4GILSeG1W1kU2g0tgPmpSUnDwS6opkpgsNm1dKwdAw-yDUGRKbdsv4i9:

      Cookie name and value.

    • Max-Age

      31536000 (1 year)

      Number of seconds until the cookie expires.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Priority

      High

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Link

    <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin, <https://options.shopapps.site>; rel="preconnect", <//megafurniture.sg/cdn/shop/t/298/assets/theme.css?v=156257152589636378131771748231>; as="style"; rel="preload"

    Used to express a typed relationship with another resource.

    X-Request-Id

    ae60cfc5-05fd-46d1-99a3-3abe3fa289d1-1782465877

    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    Nel

    {"report_to":"cf-nel","success_fraction":0.01,"max_age":604800}

    Configure network request logging.

    • Report_to

      cf-nel

    • Success_fraction

      0.01

    • Max_age

      604800

    Shopify-Complexity-Score

    441

    Shopify-Complexity-Score-V2

    441

    X-Frame-Options

    DENY

    Clickjacking protection.

    DENY - No rendering within frame.

    Content-Security-Policy

    block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;

    The content security policy allows the server to determine what resources the user is allowed to load.

    • block-all-mixed-content

      Prevent mixed content access.

    • Frame-Ancestors

      Define valid parents for frame, iframe, embed, object, and applet.

      • 'none'

    • upgrade-insecure-requests

      Treat insecure URLs as though they are secure.

    Strict-Transport-Security

    max-age=7889238

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      7889238 (91 days 7 hours 27 minutes 18 seconds)

      The time a browser should remember a site can only be accessed with https (seconds).

    Alt-Svc

    h3=":443"; ma=86400

    Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.

    • Service

      • h3 - :443

    • Service

      • ma - 86400 (1 day)

        Max age for the alternative (seconds).

    Content-Language

    en-SG

    The natural language or languages of the intended audience for the enclosed content.

    en-SG - English

    Powered-By

    Shopify

    Server-Timing

    processing;dur=446;desc="gc:17", db;dur=144, db_async;dur=3.262, parse;dur=1, render;dur=195, asn;desc="14061", edge;desc="EWR", country;desc="US", theme;desc="143588393075", pageType;desc="article", servedBy;desc="6cf4", requestID;desc="ae60cfc5-05fd-46d1-99a3-3abe3fa289d1-1782465877", _y;desc="57050d67-3759-4aae-818f-e395929cd963", _s;desc="4f47c04f-3cdc-4822-a234-8388824ce92d", _cmp;desc="3.AMPS_USNJ_f_t_h3olkXK6Rcmfihft4XrsmQ", compressionLevel;desc="5", compressionTime;dur=23.12

    Server metrics for the request.

    • Processing

      gc:17

      • dur - 446

    • Db

      • dur - 144

    • Db_async

      • dur - 3.262

    • Parse

      • dur - 1

    • Render

      • dur - 195

    • Asn

      14061

    • Edge

      EWR

    • Country

      US

    • Theme

      143588393075

    • Pagetype

      article

    • Servedby

      6cf4

    • Requestid

      ae60cfc5-05fd-46d1-99a3-3abe3fa289d1-1782465877

    • _y

      57050d67-3759-4aae-818f-e395929cd963

    • _s

      4f47c04f-3cdc-4822-a234-8388824ce92d

    • _cmp

      3.AMPS_USNJ_f_t_h3olkXK6Rcmfihft4XrsmQ

    • Compressionlevel

      5

    • Compressiontime

      • dur - 23.12
    X-Download-Options

    noopen

    X-Permitted-Cross-Domain-Policies

    none

    Specifies if a cross-domain policy is allowed.

    none - No policy is allowed.

    Server

    cloudflare

    A name for the server.

    cloudflare - Description of the server software.

    X-Xss-Protection

    1; mode=block

    Cross-site scripting (XSS) filter.

    • 1

      Enable XSS filtering.

    • Mode

      Filtering mode.

      • block - Block page if XSS is detected.
    Etag

    W/"page_cache:18058667:BlogArticleDetailsController:8e871aa4389b717efc972f4e420f8a59"

    An identifier for a specific version of a resource.

    • Validator

      weak

      A weak tag is easier to generate and prevents byte range caching.

    • Tag

      page_cache:18058667:BlogArticleDetailsController:8e871aa4389b717efc972f4e420f8a59

    Cf-Ray

    a11b28f4784922d7-EWR

    Encoded information about your request from Cloudflare.