The date and time that the message was sent.

date

type

description

charset

content-type

The length of the response body in octets (8-bit bytes).

content-length

Control options for the current connection and list of hop-by-hop response fields.

The client would like to keep the connection open.

connection

Encoded information about your request from Cloudflare.

cf-ray

x-sorting-hat-podid

x-sorting-hat-shopid

location

shopify-complexity-score

A cookie sent from the server to be set on the client

_shopify_essential

Number of seconds until the cookie expires.

Max-Age

The client will only send the cookie when requesting this path, or subdirectories, from the server.

Path

Prevents access to the cookie through JavaScript.

The cookie is only sent when requesting from a https domain.

Priority

Cookie is not sent on cross-site requests but is when following a link to the origin.

SameSite

set-cookie

DENY

x-frame-options

The content security policy allows the server to determine what resources the user is allowed to load.

Define valid parents for frame, iframe, embed, object, and applet.

frame-ancestors

Treat insecure URLs as though they are secure.

content-security-policy

A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.

The time a browser should remember a site can only be accessed with https (seconds).

max-age

strict-transport-security

x-shopid

x-shardid

Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.

service

alt-svc

Inform all caching mechanisms from server to client whether they may cache this object.

cache-control

powered-by

processing

edge

country

theme

pageType

servedBy

1314c0f6-6419-4ccf-a3f3-235bdbeb46c8-1768450107

requestID

_cmp

server-timing

cfRequestDuration

x-dc

x-request-id

cf-cache-status

endpoints

group

max_age

report-to

success_fraction

report_to

mode

x-xss-protection

Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.

Block requests if type 'style' or 'script'.

x-content-type-options

Specifies if a cross-domain policy is allowed.

x-permitted-cross-domain-policies

x-download-options

server

The resource has temporarily been moved to another location. This is superseded by 303 and 307.

An identifier for a specific version of a resource.

A weak tag is easier to generate and prevents byte range caching.

validator

etag

Used to express a typed relationship with another resource.

link

speculation-rules

localization

path

expires

_shopify_y

The client will only send the cookie when requesting from this domain.

domain

_shopify_s

_shopify_analytics

Specify how the resource is shown in search results.

x-robots-tag

The natural language or languages of the intended audience for the enclosed content.

language

content-language

6c71d229-0ec3-4da0-bbd3-75510320f596-1768450107

compressionLevel

Standard response indicating a successful action. For GET requests this will be the resource, and for POST it will be the result of the action.

HTTP Headers

Summary

Details

`https://www.encasabotanics.co.uk/`

`https://www.encasabotanics.co.uk/password`