HTTP Headers
Show the HTTP headers for a URL, with a full break-down of details. Will follow redirects.
Summary
- Response
- Total Requests
- 1
- Total Time
- 315 ms
https://www.encasabotanics.co.uk/- Status
- 200
- Message
- OK
- Time
- 315 ms
- IP
- 23.227.38.74
Timing
Wait
0 ms
DNS
27 ms
TCP
1 ms
Request
0 ms
First Byte
280 ms
Download
0 ms
Total
315 ms
HTTP Headers
- Date
Sun, 19 Jan 2025 09:03:46 GMT
The date and time that the message was sent.
- Content-Type
text/html; charset=utf-8
The MIME type of this content.
Type
text/html
Description
HTML file
Charset
utf-8
- Connection
close
Control options for the current connection and list of hop-by-hop response fields.
close - The client or server would like to close the connection.
- X-Sorting-Hat-Podid
386
- X-Sorting-Hat-Shopid
37038653572
- X-Storefront-Renderer-Rendered
1
- X-Shopify-Nginx-No-Cookies
1
- Set-Cookie
secure_customer_sig=; path=/; expires=Mon, 19 Jan 2026 09:03:46 GMT; secure; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
secure_customer_sig
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Mon, 19 Jan 2026 09:03:46 GMT
When the cookie should expire.
secure
The cookie is only sent when requesting from a https domain.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
localization=GB; path=/; expires=Mon, 19 Jan 2026 09:03:46 GMT; SameSite=Lax
A cookie sent from the server to be set on the client
localization
GB
Cookie name and value.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Mon, 19 Jan 2026 09:03:46 GMT
When the cookie should expire.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_shopify_y=2504e194-ef17-4476-afa4-84568e3333cb; domain=encasabotanics.co.uk; path=/; expires=Mon, 19 Jan 2026 15:03:46 GMT; SameSite=Lax
A cookie sent from the server to be set on the client
_shopify_y
2504e194-ef17-4476-afa4-84568e3333cb
Cookie name and value.
Domain
encasabotanics.co.uk
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Mon, 19 Jan 2026 15:03:46 GMT
When the cookie should expire.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_shopify_s=926d3af5-d4a3-4799-b6d4-804691aa4e9b; domain=encasabotanics.co.uk; path=/; expires=Mon, 20 Jan 2025 15:03:46 GMT; SameSite=Lax
A cookie sent from the server to be set on the client
_shopify_s
926d3af5-d4a3-4799-b6d4-804691aa4e9b
Cookie name and value.
Domain
encasabotanics.co.uk
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Mon, 20 Jan 2025 15:03:46 GMT
When the cookie should expire.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_tracking_consent=%7B%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22p%22%3A%22%22%2C%22s%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%2C%22region%22%3A%22USNY%22%2C%22reg%22%3A%22%22%2C%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22sale_of_data_region%22%3Afalse%2C%22consent_id%22%3A%22B7FBF60B-538e-4A90-ac46-30f90884b6c6%22%7D; domain=encasabotanics.co.uk; path=/; expires=Mon, 19 Jan 2026 09:03:46 GMT; SameSite=Lax
A cookie sent from the server to be set on the client
_tracking_consent
%7B%22con%22%3A%7B%22CMP%22%3A%7B%22a%22%3A%22%22%2C%22m%22%3A%22%22%2C%22p%22%3A%22%22%2C%22s%22%3A%22%22%7D%7D%2C%22v%22%3A%222.1%22%2C%22region%22%3A%22USNY%22%2C%22reg%22%3A%22%22%2C%22purposes%22%3A%7B%22a%22%3Atrue%2C%22p%22%3Atrue%2C%22m%22%3Atrue%2C%22t%22%3Atrue%7D%2C%22display_banner%22%3Afalse%2C%22sale_of_data_region%22%3Afalse%2C%22consent_id%22%3A%22B7FBF60B-538e-4A90-ac46-30f90884b6c6%22%7D
Cookie name and value.
Domain
encasabotanics.co.uk
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Mon, 19 Jan 2026 09:03:46 GMT
When the cookie should expire.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_orig_referrer=; domain=encasabotanics.co.uk; path=/; expires=Sun, 02 Feb 2025 09:03:46 GMT; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
_orig_referrer
Cookie name and value.
Domain
encasabotanics.co.uk
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Sun, 02 Feb 2025 09:03:46 GMT
When the cookie should expire.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Set-Cookie
_landing_page=%2F; domain=encasabotanics.co.uk; path=/; expires=Sun, 02 Feb 2025 09:03:46 GMT; HttpOnly; SameSite=Lax
A cookie sent from the server to be set on the client
_landing_page
%2F
Cookie name and value.
Domain
encasabotanics.co.uk
The client will only send the cookie when requesting from this domain.
Path
/
The client will only send the cookie when requesting this path, or subdirectories, from the server.
Expires
Sun, 02 Feb 2025 09:03:46 GMT
When the cookie should expire.
HttpOnly
Prevents access to the cookie through JavaScript.
Samesite
Lax
Cookie is not sent on cross-site requests but is when following a link to the origin.
- Link
<https://cdn.shopify.com>; rel="preconnect", <https://cdn.shopify.com>; rel="preconnect"; crossorigin
Used to express a typed relationship with another resource.
Link
- rel - preconnect
Link
- rel - preconnect
- crossorigin
- Etag
W/"cacheable:184830c89870ac2e676ac43dd7771f0d"
An identifier for a specific version of a resource.
Validator
weak
A weak tag is easier to generate and prevents byte range caching.
Tag
cacheable:184830c89870ac2e676ac43dd7771f0d
- X-Cache
miss
Indicates whether a cache was used to server this response.
- X-Frame-Options
DENY
Clickjacking protection.
DENY - No rendering within frame.
- Content-Security-Policy
block-all-mixed-content; frame-ancestors 'none'; upgrade-insecure-requests;
The content security policy allows the server to determine what resources the user is allowed to load.
block-all-mixed-content
Prevent mixed content access.
Frame-Ancestors
Define valid parents for frame, iframe, embed, object, and applet.
- 'none'
upgrade-insecure-requests
Treat insecure URLs as though they are secure.
- Strict-Transport-Security
max-age=7889238
A HSTS Policy informing the HTTP client how long to cache the HTTPS only policy and whether this applies to subdomains.
Max-Age
7889238 (91 days 7 hours 27 minutes 18 seconds)
The time a browser should remember a site can only be accessed with https (seconds).
- X-Shopid
37038653572
- X-Shardid
386
- Content-Language
en-GB
The natural language or languages of the intended audience for the enclosed content.
en-GB - English
- Powered-By
Shopify
- Server-Timing
processing;dur=138;desc="gc:53", db;dur=20, db_async;dur=1.642, render;dur=33, asn;desc="14061", edge;desc="EWR", country;desc="US", theme;desc="97714864260", pageType;desc="index", servedBy;desc="hplr", requestID;desc="f87501c7-1259-4ef4-b3b3-ee473e6c00de-1737277426"
Server metrics for the request.
Processing
gc:53
- dur - 138
Db
- dur - 20
Db_async
- dur - 1.642
Render
- dur - 33
Asn
14061
Edge
EWR
Country
US
Theme
97714864260
Pagetype
index
Servedby
hplr
Requestid
f87501c7-1259-4ef4-b3b3-ee473e6c00de-1737277426
- X-Dc
gcp-us-east1,gcp-europe-west4,gcp-europe-west4
- X-Request-Id
f87501c7-1259-4ef4-b3b3-ee473e6c00de-1737277426
- Alt-Svc
h3=":443"; ma=86400
Indicate a resource should be loaded from a different server while still appearing to be loaded from this server.
Service
- h3 - :443
Service
- ma - 86400 (1 day)
Max age for the alternative (seconds).
- ma - 86400 (1 day)
- Cf-Cache-Status
DYNAMIC
Encoded information about your request from Cloudflare.
DYNAMIC - This is not cached by default.
- Report-To
{"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9WdiOm7bXVr676HZYpV7ytAd2kZX7o%2BcrFdvG%2FuQiIZXubeJ0uNqAQhMBjr2NZE1IIBtI2VEtp5ehwMtISee5QNLE9Z8uIJqWMjPbK%2BxoGThCFQuAIJTkfUNJlUNLPFlBn5mZJZQoMevlg%3D%3D"}],"group":"cf-nel","max_age":604800}
Report to.
Endpoints
- {"url":"https://a.nel.cloudflare.com/report/v4?s=9WdiOm7bXVr676HZYpV7ytAd2kZX7o%2BcrFdvG%2FuQiIZXubeJ0uNqAQhMBjr2NZE1IIBtI2VEtp5ehwMtISee5QNLE9Z8uIJqWMjPbK%2BxoGThCFQuAIJTkfUNJlUNLPFlBn5mZJZQoMevlg%3D%3D"}
Group
cf-nel
Max_age
604800
- Nel
{"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Configure network request logging.
Success_fraction
0.01
Report_to
cf-nel
Max_age
604800
- Server-Timing
cfRequestDuration;dur=278.000116
Server metrics for the request.
Cfrequestduration
- dur - 278.000116
- X-Xss-Protection
1; mode=block
Cross-site scripting (XSS) filter.
1
Enable XSS filtering.
Mode
Filtering mode.
- block - Block page if XSS is detected.
- X-Content-Type-Options
nosniff
Prevents Internet Explorer from MIME-sniffing a response away from the declared content-type.
nosniff - Block requests if type 'style' or 'script'.
- X-Permitted-Cross-Domain-Policies
none
Specifies if a cross-domain policy is allowed.
none - No policy is allowed.
- X-Download-Options
noopen
- Server
cloudflare
A name for the server.
cloudflare - Description of the server software.
- Cf-Ray
9045a74c6d6f43e6-EWR
Encoded information about your request from Cloudflare.