HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 44 ms
https://teknokrat.ac.id/- Status
- 403
- Message
- Forbidden
- Time
- 44 ms
- IP
- 104.21.53.122
Timing
Wait
0 ms
DNS
10 ms
TCP
4 ms
Request
0 ms
First Byte
21 ms
Download
0 ms
Total
44 ms
HTTP Headers
- Date
Fri, 31 Oct 2025 03:41:10 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=UTF-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
UTF-8
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- Accept-Ch
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
Specify what client hints should be included in subsequent requests.
sec-ch-ua-bitness
Problems were found.
- Option is not one of known values.
sec-ch-ua-arch
Problems were found.
- Option is not one of known values.
sec-ch-ua-full-version
Problems were found.
- Option is not one of known values.
sec-ch-ua-mobile
Problems were found.
- Option is not one of known values.
sec-ch-ua-model
Problems were found.
- Option is not one of known values.
sec-ch-ua-platform-version
Problems were found.
- Option is not one of known values.
sec-ch-ua-full-version-list
Problems were found.
- Option is not one of known values.
sec-ch-ua-platform
Problems were found.
- Option is not one of known values.
sec-ch-ua
Problems were found.
- Option is not one of known values.
ua-bitness
Problems were found.
- Option is not one of known values.
ua-arch
Problems were found.
- Option is not one of known values.
ua-full-version
Problems were found.
- Option is not one of known values.
ua-mobile
Problems were found.
- Option is not one of known values.
ua-model
Problems were found.
- Option is not one of known values.
ua-platform-version
Problems were found.
- Option is not one of known values.
ua-platform
Problems were found.
- Option is not one of known values.
ua
Problems were found.
- Option is not one of known values.
- Cf-Mitigated
challenge
- Critical-Ch
Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
- Cross-Origin-Embedder-Policy
require-corp
- Cross-Origin-Opener-Policy
same-origin
Isolate the document from cross-origin windows.
same-origin - Isolated the browsing context to same-origin.
- Cross-Origin-Resource-Policy
same-origin
The cross-origin policy.
same-origin - Allow same origin requests only.
- Origin-Agent-Cluster
?1
- Permissions-Policy
accelerometer=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
Enable and disable browser features.
accelerometer
Control access to accelerometer.
- () - Feature is disabled.
browsing-topics
Problems were found.
- Unknown option
- () - Feature is disabled.
camera
Control access to camera.
- () - Feature is disabled.
clipboard-read
Control access to clipboard reading.
- () - Feature is disabled.
clipboard-write
Control access to clipboard writing.
- () - Feature is disabled.
geolocation
Control access to geo location API.
- () - Feature is disabled.
gyroscope
Control access to gyroscope API.
- () - Feature is disabled.
hid
Problems were found.
- Unknown option
- () - Feature is disabled.
interest-cohort
Control access to Federated Learning of Cohorts.
- () - Feature is disabled.
magnetometer
Control access to magnetometer API.
- () - Feature is disabled.
microphone
Control access to microphone device.
- () - Feature is disabled.
payment
Control access to payment request API.
- () - Feature is disabled.
publickey-credentials-get
Control access to web authentication API.
- () - Feature is disabled.
screen-wake-lock
Control access to screen wake lock API.
- () - Feature is disabled.
serial
Problems were found.
- Unknown option
- () - Feature is disabled.
sync-xhr
Control access to XMLHttpRequests.
- () - Feature is disabled.
usb
Control access to web USB API.
- () - Feature is disabled.
- Referrer-Policy
same-origin
Controls what referrer information is sent with requests.
same-origin - Send the full referrer for same origin requests, and nothing for cross-origin.
- Server-Timing
chlray;desc="9970229c3e87c33d"
Server metrics for the request.
Chlray
9970229c3e87c33d
- Server-Timing
cfL4;desc="?proto=TCP&rtt=1853&min_rtt=1111&rtt_var=946&sent=3&recv=5&lost=0&retrans=0&sent_bytes=2834&recv_bytes=687&delivery_rate=2606660&cwnd=239&unsent_bytes=0&cid=607df2602fd914b2&ts=28&x=0"
Server metrics for the request.
Cfl4
Problems were detected with this header
- Duplicate header. There is another header with this name and this may cause problems.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Cache-Control
private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Inform all caching mechanisms from server to client whether they may cache this object.
private
May only be stored by a browser cache.
Max-Age
0
The time a browser should remember a site can only be accessed with https (seconds).
no-store
May not be stored by any cache.
no-cache
May be stored by any cache but must be validated by the server.
must-revalidate
Stale caches must not be used.
post-check
0
Problems were found.
- Option is not one of known values.
pre-check
0
Problems were found.
- Option is not one of known values.
- Expires
Thu, 01 Jan 1970 00:00:01 GMT
The time at which the response is considered stale.
- Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6LnHskcS5egkrgkfkg3mvD23g695Ra7OI%2BU6GKH2Bpv69Oaiu%2FLK8SwThtXkjHAvksRouznOvYIrBagDtgZMzatlqIOEk%2Fbeo5hk7%2FNoFna%2FtOBQr%2F%2FoQ7rtQFIwjmSFwz8%3D"}],"group":"cf-nel","max_age":604800}
Report to.
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=6LnHskcS5egkrgkfkg3mvD23g695Ra7OI%2BU6GKH2Bpv69Oaiu%2FLK8SwThtXkjHAvksRouznOvYIrBagDtgZMzatlqIOEk%2Fbeo5hk7%2FNoFna%2FtOBQr%2F%2FoQ7rtQFIwjmSFwz8%3D"}
Group
cf-nel
Max_age
604800
- Nel
{"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Configure network request logging.
Success_fraction
0Report_to
cf-nel
Max_age
604800
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Ray
9970229c3e87c33d-EWR
Encoded information about your request from Cloudflare.
- Alt-Svc
h3=":443"; ma=86400
Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.
Service
- h3 - :443
Service
- ma - 86400 (1 day)
Max age for the alternative (seconds).
- ma - 86400 (1 day)