HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
200
Total Requests
1
Total Time
940 ms
  • IP
    172.67.175.231
    View Map

  • Timing

    Wait

    0 ms

    DNS

    9 ms

    TCP

    1 ms

    Request

    0 ms

    First Byte

    917 ms

    Download

    1 ms

    Total

    940 ms

  • HTTP Headers

    Date

    Tue, 01 Oct 2024 22:46:07 GMT

    The date and time that the message was sent.

    Content-Type

    text/html; charset=UTF-8

    The MIME type of this content.

    • Type

      text/html

    • Description

      HTML file

    • Charset

      UTF-8

    Connection

    close

    Control options for the current connection and list of hop-by-hop response fields.

    close - The client or server would like to close the connection.

    Vary

    Accept-Encoding

    Indicates that different content may be provided to different clients, depending on the vary header.

    • Headers

      • Accept-Encoding
    Link

    <https://olderworkers.com.au/wp-json/>; rel="https://api.w.org/"

    Used to express a typed relationship with another resource.

    Fastcgi-Cache

    MISS

    Strict-Transport-Security

    max-age=31536000; includeSubDomains;

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      31536000 (1 year)

      The time a browser should remember a site can only be accessed with https (seconds).

    • includesubdomains

      max-age applies to subdomains as well.

    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    X-Xss-Protection

    1; mode=block

    Cross-site scripting (XSS) filter.

    • 1

      Enable XSS filtering.

    • Mode

      Filtering mode.

      • block - Block page if XSS is detected.
    X-Ua-Compatible

    IE=Edge

    Recommends the preferred rendering engine (often a backward-compatibility mode) to use to display the content.

    IE=Edge - Use highest level rendering.

    Content-Security-Policy

    frame-ancestors 'self'

    The content security policy allows the server to determine what resources the user is allowed to load.

    • Frame-Ancestors

      Define valid parents for frame, iframe, embed, object, and applet.

      • 'self'
    X-Frame-Options

    SAMEORIGIN

    Clickjacking protection.

    SAMEORIGIN - No rendering if origin mismatch.

    Cf-Cache-Status

    DYNAMIC

    Encoded information about your request from Cloudflare.

    DYNAMIC - This is not cached by default.

    Report-To

    {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F8dKIvSkmkSRxjSOvpMZWjf5lUyI3q6MQ6wB5aRO6ehSLgNnnzaNANkPN%2BIzdGrJ7rX8qNkj5Y8NaNrbKqmcw5zg2VPJl8NCvhikPoL2F1%2Fw%2FDqdCbIcY0o3hlUntbuNhIVcoMHU"}],"group":"cf-nel","max_age":604800}

    Report to.

    • Endpoints

      • {"url":"https://a.nel.cloudflare.com/report/v4?s=F8dKIvSkmkSRxjSOvpMZWjf5lUyI3q6MQ6wB5aRO6ehSLgNnnzaNANkPN%2BIzdGrJ7rX8qNkj5Y8NaNrbKqmcw5zg2VPJl8NCvhikPoL2F1%2Fw%2FDqdCbIcY0o3hlUntbuNhIVcoMHU"}

    • Group

      cf-nel

    • Max_age

      604800

    Nel

    {"success_fraction":0,"report_to":"cf-nel","max_age":604800}

    Configure network request logging.

    • Success_fraction

      0

    • Report_to

      cf-nel

    • Max_age

      604800

    Speculation-Rules

    "/cdn-cgi/speculation"

    Server

    cloudflare

    A name for the server.

    cloudflare - Description of the server software.

    Cf-Ray

    8cbffca19d1d4414-EWR

    Encoded information about your request from Cloudflare.