HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 940 ms
https://olderworkers.com.au/author/ptxxn16rx7-gemmasmith-co-uk/
- Status
- 200
- Message
- OK
- Time
- 940 ms
- IP
- 172.67.175.231
Timing
Wait
0 ms
DNS
9 ms
TCP
1 ms
Request
0 ms
First Byte
917 ms
Download
1 ms
Total
940 ms
HTTP Headers
- Date
Tue, 01 Oct 2024 22:46:07 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=UTF-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
UTF-8
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- Vary
Accept-Encoding
Indicates that different content may be provided to different clients, depending on the vary header.
Headers
- Accept-Encoding
- Link
<https://olderworkers.com.au/wp-json/>; rel="https://api.w.org/"
Used to express a typed relationship with another resource.
Link
https://olderworkers.com.au/wp-json/
- rel - https://api.w.org/
- Fastcgi-Cache
MISS
- Strict-Transport-Security
max-age=31536000; includeSubDomains;
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
31536000 (1 year)
The time a browser should remember a site can only be accessed with https (seconds).
includesubdomains
max-age applies to subdomains as well.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Xss-Protection
1; mode=block
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.
- X-Ua-Compatible
IE=Edge
Recommends the preferred rendering engine (often a backward-compatibility mode) to use to display the content.
IE=Edge - Use highest level rendering.
- Content-Security-Policy
frame-ancestors 'self'
The content security policy allows the server to determine what resources the user is allowed to load.
Frame-Ancestors
Define valid parents for frame, iframe, embed, object, and applet.
- 'self'
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Cf-Cache-Status
DYNAMIC
Encoded information about your request from Cloudflare.
DYNAMIC - This is not cached by default.
- Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=F8dKIvSkmkSRxjSOvpMZWjf5lUyI3q6MQ6wB5aRO6ehSLgNnnzaNANkPN%2BIzdGrJ7rX8qNkj5Y8NaNrbKqmcw5zg2VPJl8NCvhikPoL2F1%2Fw%2FDqdCbIcY0o3hlUntbuNhIVcoMHU"}],"group":"cf-nel","max_age":604800}
Report to.
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=F8dKIvSkmkSRxjSOvpMZWjf5lUyI3q6MQ6wB5aRO6ehSLgNnnzaNANkPN%2BIzdGrJ7rX8qNkj5Y8NaNrbKqmcw5zg2VPJl8NCvhikPoL2F1%2Fw%2FDqdCbIcY0o3hlUntbuNhIVcoMHU"}
Group
cf-nel
Max_age
604800
- Nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Configure network request logging.
Success_fraction
0Report_to
cf-nel
Max_age
604800
- Speculation-Rules
"/cdn-cgi/speculation"
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Ray
8cbffca19d1d4414-EWR
Encoded information about your request from Cloudflare.