HTTP Headers

Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.

Summary

Response
200
Total Requests
1
Total Time
320 ms

  • https://roomstyler.com/users/mostbetcz

    Status
    200
    Message
    OK
    Time
    320 ms
  • IP
    52.212.158.16
    View Map

  • Timing

    Wait

    0 ms

    DNS

    9 ms

    TCP

    88 ms

    Request

    1 ms

    First Byte

    134 ms

    Download

    1 ms

    Total

    320 ms

  • HTTP Headers

    Content-Type

    text/html; charset=utf-8

    The MIME type of this content.

    • Type

      text/html

    • Description

      HTML file

    • Charset

      utf-8

    Vary

    Accept-Encoding

    Indicates that different content may be provided to different clients, depending on the vary header.

    • Headers

      • Accept-Encoding
    Cache-Control

    max-age=0, private, must-revalidate

    Inform all caching mechanisms from server to client whether they may cache this object.

    • Max-Age

      0

      The time a browser should remember a site can only be accessed with https (seconds).

    • private

      May only be stored by a browser cache.

    • must-revalidate

      Stale caches must not be used.

    Strict-Transport-Security

    max-age=63072000; includeSubDomains

    A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

    • Max-Age

      63072000 (2 years)

      The time a browser should remember a site can only be accessed with https (seconds).

    • includesubdomains

      max-age applies to subdomains as well.

    Referrer-Policy

    strict-origin-when-cross-origin

    Controls what referrer information is sent with requests.

    strict-origin-when-cross-origin - Send the full referrer for a same origin request. Send the origin only for cross-domain requests where the protocol level is the same. Otherwise do not send the referrer.

    X-Permitted-Cross-Domain-Policies

    none

    Specifies if a cross-domain policy is allowed.

    none - No policy is allowed.

    X-Xss-Protection

    0

    Cross-site scripting (XSS) filter.

    0 - Disable XSS filtering.

    X-Request-Id

    09395527-45aa-4b47-87e8-67442fcfa13b

    Link

    </assets/user_show-f067c0acc2d45b2d256325f223764f71b4b679e5552bda51940732566e23a757.js>; rel=preload; as=script; nopush,</assets/smacss/application-0be54671c93e3ad5122a72ccff205cd08fa9ff16bc94c6facc9f9671e38e2790.css>; rel=preload; as=style; nopush,</assets/application-7fd0aed6b2d2b0063235222d2480f31906b0dbe592ce219a5cbb66208821735e.js>; rel=preload; as=script; nopush,<//fonts.googleapis.com/css?family=Lato:300,400,700,900,300italic>; rel=preload; as=style; nopush

    Used to express a typed relationship with another resource.

    • Link

      /assets/user_show-f067c0acc2d45b2d256325f223764f71b4b679e5552bda51940732566e23a757.js

      • as - script
      • nopush

    • Link

      /assets/smacss/application-0be54671c93e3ad5122a72ccff205cd08fa9ff16bc94c6facc9f9671e38e2790.css

      • as - style
      • nopush

    • Link

      /assets/application-7fd0aed6b2d2b0063235222d2480f31906b0dbe592ce219a5cbb66208821735e.js

      • as - script
      • nopush

    • Link

      //fonts.googleapis.com/css?family=Lato:300,400,700,900,300italic

      • rel - preload
      • as - style
      • nopush
    P3p

    CP="This is not a policy. Check out https://roomstyler.com/terms"

    P3P policy.

    Etag

    W/"ffa85c24d139a2f04ef36f87e9f6c291"

    An identifier for a specific version of a resource.

    • Validator

      weak

      A weak tag is easier to generate and prevents byte range caching.

    • Tag

      ffa85c24d139a2f04ef36f87e9f6c291

    X-Frame-Options

    SAMEORIGIN

    Clickjacking protection.

    SAMEORIGIN - No rendering if origin mismatch.

    X-Runtime

    0.045952

    X-Content-Type-Options

    nosniff

    Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

    nosniff - Block requests if type 'style' or 'script'.

    Date

    Wed, 18 Jun 2025 18:54:38 GMT

    The date and time that the message was sent.

    Set-Cookie

    _roomstyler_session=zqbQmahPYU%2B4fW1yc%2BDi4PJv8MSLrW6zKCftp1fxoznhFcp%2F%2B6UqPBk9cqWBQs9MnCYpR%2BcWZKaKaXe%2F3aW4zguhaJInr2CGPrxKswZxOt%2FIJ1kKbmRMVw58wmzeSX5IrnagJZF6ub5JrAgJ8bR2ixN08FlnAnSXyVSNY%2BYCZVZuwOyAKKKqwMabBXsQpY6UVcG1MpfntWhXRdUcmbx4n7g%2BENAgTkSpxuw73oZUVLXjtqvB21A1r8lorTLP1nJjJ2SzT75XBSiHo%2FaJSkcGFj5r40KCTSQfclYx--cR7MrMBLqy5h9B4k--n4lXp3VBQpGOBF5UhXz4mg%3D%3D; path=/; secure; HttpOnly; SameSite=Lax

    A cookie sent from the server to be set on the client

    • _roomstyler_session

      zqbQmahPYU%2B4fW1yc%2BDi4PJv8MSLrW6zKCftp1fxoznhFcp%2F%2B6UqPBk9cqWBQs9MnCYpR%2BcWZKaKaXe%2F3aW4zguhaJInr2CGPrxKswZxOt%2FIJ1kKbmRMVw58wmzeSX5IrnagJZF6ub5JrAgJ8bR2ixN08FlnAnSXyVSNY%2BYCZVZuwOyAKKKqwMabBXsQpY6UVcG1MpfntWhXRdUcmbx4n7g%2BENAgTkSpxuw73oZUVLXjtqvB21A1r8lorTLP1nJjJ2SzT75XBSiHo%2FaJSkcGFj5r40KCTSQfclYx--cR7MrMBLqy5h9B4k--n4lXp3VBQpGOBF5UhXz4mg%3D%3D

      Cookie name and value.

    • Path

      /

      The client will only send the cookie when requesting this path, or subdirectories, from the server.

    • secure

      The cookie is only sent when requesting from a https domain.

    • HttpOnly

      Prevents access to the cookie through JavaScript.

    • Samesite

      Lax

      Cookie is not sent on cross-site requests but is when following a link to the origin.

    Connection

    close

    Control options for the current connection and list of hop-by-hop response fields.

    close - The client or server would like to close the connection.