HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
404
Total Requests
1
Total Time
491 ms
  • IP
    23.227.38.65
    View Map

  • Timing

    Wait

    1 ms

    DNS

    153 ms

    TCP

    4 ms

    Request

    0 ms

    First Byte

    318 ms

    Download

    1 ms

    Total

    491 ms

  • HTTP Headers

    Date

    Thu, 11 Jun 2026 12:52:14 GMT

    The date and time that the message was sent.

    Content-Type

    text/html; charset=utf-8

    The MIME type of this content.

    Problems were detected with this header

    • Unknown MIME type.
    Connection

    keep-alive

    Control options for the current connection and list of hop-by-hop response fields.

    keep-alive - The client would like to keep the connection open.

    Report-To

    {"group":"cf-nel","max_age":604800,"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v4?s=ymMgMmJb29sQ%2Fo087SO04h0%2B5V8nH2hv2WlD1BhIEbw2NPLd0w5vIggN21QmJkEH%2FSd4OSl5kEd8LjcVEBt9nE4QX7k67Htn4FlkPr3mnQwPCxH1x%2Bs6bn5jU1BaeQg1jA%3D%3D"}]}

    Report to.

    • Group

      cf-nel

    • Max_age

      604800

    • Endpoints

      • {"url":"https://a.nel.cloudflare.com/report/v4?s=ymMgMmJb29sQ%2Fo087SO04h0%2B5V8nH2hv2WlD1BhIEbw2NPLd0w5vIggN21QmJkEH%2FSd4OSl5kEd8LjcVEBt9nE4QX7k67Htn4FlkPr3mnQwPCxH1x%2Bs6bn5jU1BaeQg1jA%3D%3D"}
    X-Dc

    gcp-us-east1,gcp-us-east1,gcp-us-east1

    Cf-Cache-Status

    DYNAMIC

    Encoded information about your request from Cloudflare.

    DYNAMIC - This is not cached by default.

    Set-Cookie

    cart_currency=EUR; path=/; expires=Thu, 25 Jun 2026 12:52:14 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • cart_currency

      EUR

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Thu, 25 Jun 2026 12:52:14 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_y=290dffdf-04ab-4129-8305-595acb129152; domain=philsgranola.gr; path=/; expires=Fri, 11 Jun 2027 18:52:14 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_y

      290dffdf-04ab-4129-8305-595acb129152

      Cookie name and value.

    • Domain

      philsgranola.gr

      The client will only send the cookie when requesting from this domain.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Fri, 11 Jun 2027 18:52:14 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_s=e90452a8-99fa-455f-a1b1-0cff7919ce34; domain=philsgranola.gr; path=/; expires=Thu, 11 Jun 2026 13:22:14 GMT; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_s

      e90452a8-99fa-455f-a1b1-0cff7919ce34

      Cookie name and value.

    • Domain

      philsgranola.gr

      The client will only send the cookie when requesting from this domain.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • Expires

      Thu, 11 Jun 2026 13:22:14 GMT

      When the cookie should expire.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_essential=:AZ62vYaIAAEAJJDMMN1Qmee2mOoZNLaSu2_TmOUQ277QeR-QH7FAyMXeBr7vOH3P-NSQWyWiW2snoZJQBq7ka6TKzpcaf-_XCZJP3wRVvBXdl_N9k_4mJufJ318NY88w67fhNVIDE2Xugqd8Epoj9sc0QeqFqQFSOem3wTJHgdnmB0D6dsS05sgzRImcLgiGd0ucHdYgZesKOi2fjlZgMG9IRNk4QzXgK6RIfR30E7qlAoV2E_hIpPu8m24udg9zPR-zZRRYSHu09VS3wCTB8QEukGIY4Jb9pWNJ5HDsFXmRdI1UpIImvLQbX9PRUt_yKluaFH26WMnz5WVW4eqVdxo0B-nnaIjwkQACf4Jq14N8ddf9Ghu-HtJlSDAWF6-bifgKSYOw-NBoYnHgQbd2PwxCCPL6itXbtyY-JnrvN9VH5P8:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_essential

      :AZ62vYaIAAEAJJDMMN1Qmee2mOoZNLaSu2_TmOUQ277QeR-QH7FAyMXeBr7vOH3P-NSQWyWiW2snoZJQBq7ka6TKzpcaf-_XCZJP3wRVvBXdl_N9k_4mJufJ318NY88w67fhNVIDE2Xugqd8Epoj9sc0QeqFqQFSOem3wTJHgdnmB0D6dsS05sgzRImcLgiGd0ucHdYgZesKOi2fjlZgMG9IRNk4QzXgK6RIfR30E7qlAoV2E_hIpPu8m24udg9zPR-zZRRYSHu09VS3wCTB8QEukGIY4Jb9pWNJ5HDsFXmRdI1UpIImvLQbX9PRUt_yKluaFH26WMnz5WVW4eqVdxo0B-nnaIjwkQACf4Jq14N8ddf9Ghu-HtJlSDAWF6-bifgKSYOw-NBoYnHgQbd2PwxCCPL6itXbtyY-JnrvN9VH5P8:

      Cookie name and value.

    • Max-Age

      31536000 (1 year)

      Number of seconds until the cookie expires.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Priority

      High

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_analytics=:AZ62vYd4AAEAInyhA8z5r2YfQGBJJ_k9Gfco23lprTPdtP2siZx27NJTZjPQE4aTvgAe_W1oDMsmN11sAPLnRZKmyrPfdkHX2QfIh5zUWreoJyGruWeO15loCU1cgTj4MyQBAWRacS03YYUVEus4Hc87OkBadh2dSw:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_analytics

      :AZ62vYd4AAEAInyhA8z5r2YfQGBJJ_k9Gfco23lprTPdtP2siZx27NJTZjPQE4aTvgAe_W1oDMsmN11sAPLnRZKmyrPfdkHX2QfIh5zUWreoJyGruWeO15loCU1cgTj4MyQBAWRacS03YYUVEus4Hc87OkBadh2dSw:

      Cookie name and value.

    • Max-Age

      31536000 (1 year)

      Number of seconds until the cookie expires.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Priority

      High

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Set-Cookie

    _shopify_marketing=:AZ62vYd4AAEAgAXoSyoe3IELxVXGE3t9xvnCsFuBBXEXr5LFcUTVt9LpFgOX7TecY-h0Nnaxsuvo48i7Hlsb6V0E_p4:; Max-Age=31536000; Path=/; HttpOnly; Secure; Priority=High; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _shopify_marketing

      :AZ62vYd4AAEAgAXoSyoe3IELxVXGE3t9xvnCsFuBBXEXr5LFcUTVt9LpFgOX7TecY-h0Nnaxsuvo48i7Hlsb6V0E_p4:

      Cookie name and value.

    • Max-Age

      31536000 (1 year)

      Number of seconds until the cookie expires.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Secure

      The cookie is only sent when requesting from a https domain.

    • Priority

      High

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Link

    <https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin, <//philsgranola.gr/cdn/shop/t/18/assets/base.css?v=94418986891823283801770569222>; as="style"; rel="preload"

    Used to express a typed relationship with another resource.

    X-Request-Id

    05836c70-cf74-4323-bba2-7d75f4283bc4-1781182334

    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    Nel

    {"report_to":"cf-nel","success_fraction":0.01,"max_age":604800}

    Configure network request logging.

    • Report_to

      cf-nel

    • Success_fraction

      0.01

    • Max_age

      604800

    Shopify-Complexity-Score

    510

    Shopify-Complexity-Score-V2

    510

    X-Frame-Options

    DENY

    Clickjacking protection.

    DENY - No rendering within frame.

    Content-Security-Policy

    block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;

    The content security policy allows the server to determine what resources the user is allowed to load.

    • block-all-mixed-content

      Prevent mixed content access.

    • Frame-Ancestors

      Define valid parents for frame, iframe, embed, object, and applet.

      • 'none'

    • upgrade-insecure-requests

      Treat insecure URLs as though they are secure.

    Strict-Transport-Security

    max-age=7889238

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      7889238 (91 days 7 hours 27 minutes 18 seconds)

      The time a browser should remember a site can only be accessed with https (seconds).

    Alt-Svc

    h3=":443"; ma=86400

    Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.

    • Service

      • h3 - :443

    • Service

      • ma - 86400 (1 day)

        Max age for the alternative (seconds).

    Content-Language

    el-GR

    The natural language or languages of the intended audience for the enclosed content.

    el-GR - Greek

    Cache-Control

    private, no-store

    Inform all caching mechanisms from server to client whether they may cache this object.

    • private

      May only be stored by a browser cache.

    • no-store

      May not be stored by any cache.

    Powered-By

    Shopify

    Server-Timing

    processing;dur=260;desc="gc:51", db;dur=91, render;dur=79, asn;desc="14061", edge;desc="EWR", country;desc="US", theme;desc="136976728166", pageType;desc="404", servedBy;desc="hqbj", requestID;desc="05836c70-cf74-4323-bba2-7d75f4283bc4-1781182334", _y;desc="290dffdf-04ab-4129-8305-595acb129152", _s;desc="e90452a8-99fa-455f-a1b1-0cff7919ce34", _cmp;desc="3.AMPS_USNJ_f_t_nNjv-WPgQ4ulT*6doouR6A", compressionLevel;desc="5", compressionTime;dur=55.263

    Server metrics for the request.

    • Processing

      gc:51

      • dur - 260

    • Db

      • dur - 91

    • Render

      • dur - 79

    • Asn

      14061

    • Edge

      EWR

    • Country

      US

    • Theme

      136976728166

    • Pagetype

      404

    • Servedby

      hqbj

    • Requestid

      05836c70-cf74-4323-bba2-7d75f4283bc4-1781182334

    • _y

      290dffdf-04ab-4129-8305-595acb129152

    • _s

      e90452a8-99fa-455f-a1b1-0cff7919ce34

    • _cmp

      3.AMPS_USNJ_f_t_nNjv-WPgQ4ulT*6doouR6A

    • Compressionlevel

      5

    • Compressiontime

      • dur - 55.263
    X-Download-Options

    noopen

    X-Permitted-Cross-Domain-Policies

    none

    Specifies if a cross-domain policy is allowed.

    none - No policy is allowed.

    Server

    cloudflare

    A name for the server.

    cloudflare - Description of the server software.

    X-Xss-Protection

    1; mode=block

    Cross-site scripting (XSS) filter.

    • 1

      Enable XSS filtering.

    • Mode

      Filtering mode.

      • block - Block page if XSS is detected.
    Etag

    W/"page_cache:59654045798:NotFoundController:6bcad5992a8222c6aa2569f39b5a965d"

    An identifier for a specific version of a resource.

    • Validator

      weak

      A weak tag is easier to generate and prevents byte range caching.

    • Tag

      page_cache:59654045798:NotFoundController:6bcad5992a8222c6aa2569f39b5a965d

    Cf-Ray

    a0a0c076fc422e9e-EWR

    Encoded information about your request from Cloudflare.