HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 477 ms
https://www.chartparts.com/home/chart-parts-points- Status
- 200
- Message
- OK
- Time
- 477 ms
- IP
- 192.96.18.149
Timing
Wait
0 ms
DNS
23 ms
TCP
32 ms
Request
0 ms
First Byte
345 ms
Download
1 ms
Total
477 ms
HTTP Headers
- Cache-Control
no-cache
Inform all caching mechanisms from server to client whether they may cache this object.
no-cache - May be stored by any cache but must be validated by the server.
- Pragma
no-cache
HTTP/1.0 backwards compatible cache handling.
no-cache - Force requests to the origin server before releasing a cache.
- Content-Length
42773(42.8 kB)
The length of the response body in octets (8-bit bytes).
- Content-Type
text/html; charset=utf-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
utf-8
- Expires
-1
The time at which the response is considered stale.
- Server
Microsoft-IIS/10.0
A name for the server.
Server
Microsoft-IIS
Description of the server software.
Version
10.0
Version number.
- X-Aspnet-Version
4.0.30319
- Referrer-Policy
no-referrer-when-downgrade
Controls what referrer information is sent with requests.
no-referrer-when-downgrade - Send the full referrer when the protocol security stays the same, or improves.
- X-Frame-Options
SAMEORIGIN
Clickjacking protection.
SAMEORIGIN - No rendering if origin mismatch.
- Set-Cookie
ASP.NET_SessionId=hedtxgrj3apzbbed3z4n0aoz; path=/; secure; HttpOnly; SameSite=None
A cookie sent from the server to be set on the client
ASP.NET_SessionId
hedtxgrj3apzbbed3z4n0aoz
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
secure
The cookie is only sent when requesting from a https domain.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
None
Cookie sent with both cross-site and same-site requests..
- Set-Cookie
/_ProfileCookie=UserPreferenceLang=en; expires=Sun, 05-Apr-2026 21:09:59 GMT; path=/; secure; HttpOnly; SameSite=None
A cookie sent from the server to be set on the client
/_ProfileCookie
UserPreferenceLang
Cookie name and value.
Expires
Sun, 05-Apr-2026 21:09:59 GMT
When the cookie should expire.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
secure
The cookie is only sent when requesting from a https domain.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
None
Cookie sent with both cross-site and same-site requests..
- Strict-Transport-Security
max-age=31536000; includeSubDomains
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
31536000 (1 year)
The time a browser should remember a site can only be accessed with https (seconds).
includesubdomains
max-age applies to subdomains as well.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Xss-Protection
1; mode=block
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.
- Content-Security-Policy
upgrade-insecure-requests
The content security policy allows the server to determine what resources the user is allowed to load.
upgrade-insecure-requests - Treat insecure URLs as though they are secure.
- Servernode
02
- Date
Fri, 06 Mar 2026 22:09:59 GMT
The date and time that the message was sent.