forthepeople.com | Analytics by SecurityHeaders

HTTP Headers report for forthepeople.com

Header Name Header Data
HTTP status code 200
Content-Security-Policy form-action 'self' hooks.zapier.com/hooks/ www.facebook.com/tr/; frame-ancestors 'self' *.forthepeople.com forthepeople.korbyt.com http://localhost:8000; default-src 'self' *.lpsnmedia.net; child-src 'self' blob:; connect-src 'self' *.abtasty.com *.ampproject.net *.analytics.google.com *.apollo.forthepeople.com/ *.clarity.ms *.liveperson.net *.lpsnmedia.net *.visualwebsiteoptimizer.com 100.20.58.101 18.210.229.244 3.212.39.155 34.215.155.61 35.160.46.251 35.85.84.151 44.212.189.233 44.228.85.26 44.238.122.172 48879.tctm.co 52.22.50.55 52.71.121.170 54.156.2.105 98ftn8ihml.execute-api.us-east-1.amazonaws.com/prod/track a.omappapi.com/ ads-api.twitter.com ads-twitter.com adservice.google.com alpixtrack.com analytics.google.com analytics.tiktok.com analytics.twitter.com api-static-2.feathery.io/api/custom_request/ api.feathery.io/api/ api.omappapi.com/ api.userway.org api.wistia.com apollo-v2.forthepeople.com/ apollo.forthepeople.com/ bam.nr-data.net bat.bing.com boards-api.greenhouse.io/ cdn.ampproject.org cdn.cookielaw.org cdn.feathery.io/api/panel/ cdn.linkedin.oribi.io cdn.userway.org cdn77.api.userway.org/api/ cdn77.api.userway.org/api/ conoret.com conversions-config.reddit.com/v1/pixel/config/ ct.pinterest.com/md/ ct.pinterest.com/user/ d.adroll.com data.nudgify.com/ dev.visualwebsiteoptimizer.com distillery.wistia.com embed-cloudfront.wistia.com embed-fastly.wistia.com embedwistia-a.akamaihd.net evnt.byspotify.com fast.wistia.com fast.wistia.net fg8vvsvnieiv3ej16jby.litix.io forthepeople.containers.piwik.pro forthepeople.piwik.pro geolocation.onetrust.com hooks.zapier.com jri8b0auwh.execute-api.us-east-1.amazonaws.com/staging/track lambdas.api.forthepeople.com/serviceproxy maps.googleapis.com/maps/api/ n2.mouseflow.com pipedream.wistia.com pixel.nudgify.com platform.twitter.com s.yimg.com/wi/ stats.g.doubleclick.net tags.srv.stackadapt.com tn.alphonso.tv/ad/ utils.api.forthepeople.com wss://*.liveperson.net wss://va.msg.liveperson.net/ws_api/account/ www.facebook.com/tr/ www.google-analytics.com www.google.com www.googletagmanager.com z.omappapi.com/; font-src 'self' *.abtasty.com a.omappapi.com/ blob: cdn.userway.org common-fonts.abtasty.com d10ofku556nqc2.cloudfront.net/user-files-1/1184/font/ data: fast.wistia.com fonts.googleapis.com fonts.gstatic.com static.forthepeople.com use.typekit.net; frame-src 'self' *.ampproject.net *.liveperson.net *.lpsnmedia.net 20830350p.rfihub.com ambassadors.forthepeople.com ambassadors.staging.forthepeople.com amp.onetrust.mgr.consensu.org apollo-v2.forthepeople.com apollo.forthepeople.com/ app.vwo.com calendly.com cdn.cookielaw.org cdn.userway.org e.issuu.com evaluation.forthepeople.com fast.wistia.net forthepeople920.outgrow.us html5-player.libsyn.com indd.adobe.com/embed/ insight.adsrvr.org lpcdn.lpsnmedia.net morganlab-dev2.herokuapp.com platform.twitter.com static.addtoany.com td.doubleclick.net tpc.googlesyndication.com va.idp.liveperson.net va.msg.liveperson.net va.msghist.liveperson.net www.facebook.com www.google.com/recaptcha/ www.google.com/recaptcha/* www.googletagmanager.com www.pinterest.com www.youtube-nocookie.com www.youtube.com; img-src 'self' *.abtasty.com *.amazonaws.com *.lpsnmedia.net ads-api.twitter.com ads-twitter.com analytics.twitter.com blob: data: https:; manifest-src 'self'; media-src 'self' blob: data: embed-cloudfront.wistia.com embed-fastly.wistia.com embed-ssl.wistia.com embedwistia-a.akamaihd.net fast.wistia.com lpcdn.lpsnmedia.net/le_unified_window/ static.forthepeople.com; object-src 'none'; script-src 'report-sample' 'self' 'unsafe-eval' 'unsafe-inline' *.abtasty.com *.clarity.ms *.googleapis.com *.liveperson.net *.lpsnmedia.net *.mountain.com 100002515.collect.igodigital.com/collect.js 48879.tctm.co a.omappapi.com/ a.quora.com ads.nextdoor.com/public/pixel/ndp.js ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js analytics.tiktok.com apollo-v2.forthepeople.com apollo-v2.forthepeople.com apollo.forthepeople.com apollo.forthepeople.com app.vwo.com assets.calendly.com/assets/external/widget.js attorneys.findlaw.com/flt/flt.js bam.nr-data.net bat.bing.com blob: c1.rfihub.net/js/tc.min.js cdn.ampproject.org cdn.cookielaw.org cdn.jsdelivr.net/npm/@feathery/react@latest/umd/ cdn.jsdelivr.net/npm/bootstrap@5.2.1/dist/js/bootstrap.bundle.min.js cdn.jsdelivr.net/npm/libphonenumber-js@1.11.16/bundle/libphonenumber-js.min.js cdn.jsdelivr.net/npm/swiper@9/swiper-bundle.min.js cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.js cdn.krxd.net/controltag/tlu3j2nkg.js cdn.mouseflow.com/projects/46b146ea-d195-492b-906b-a2a8ba5a8cea.js cdn.userway.org cdnjs.cloudflare.com/ajax/libs/ace/1.2.0/ace.min.js cdnjs.cloudflare.com/ajax/libs/lazysizes/5.3.2/lazysizes.min.js collector-8551.tvsquared.com/tv2track.js collector-8688.tvsquared.com/tv2track.js connect.facebook.net conoret.com d.adroll.com dev.visualwebsiteoptimizer.com dyv6f9ner1ir9.cloudfront.net/assets/js/sloader.js fast.wistia.com fast.wistia.net forthepeople.containers.piwik.pro forthepeople.piwik.pro geolocation.onetrust.com googleanalytics.com googleoptimize.com i.simpli.fi/p js-agent.newrelic.com js.adsrvr.org js.alpixtrack.com/alphpixel.js maxcdn.bootstrapcdn.com/bootstrap/4.3.1/js/bootstrap.min.js optimize.google.com pix.cadent.tv pixel.byspotify.com/ping.min.js pixel.convertize.io pixel.nudgify.com/pixel.js platform.twitter.com rules.quantcount.com/rules-p-qPTyA_jaKmX1m.js s.adroll.com s.pinimg.com/ct/ s.yimg.com/wi/ secure.quantserve.com/quant.js sethads1.s3.amazonaws.com/conversions.js snap.licdn.com/li.lms-analytics/insight.min.js static.addtoany.com static.ads-twitter.com/uwt.js static.cdn-apple.com/businesschat/start-chat-button/ static.forthepeople.com tag.simpli.fi tags.srv.stackadapt.com tn.alphonso.tv/ad/ tpc.googlesyndication.com unpkg.com/quicklink@1.0.1/dist/quicklink.umd.js va.v.liveperson.net/api/js/ www.blockwords.biz/static/conversions.js www.dwin1.com www.google-analytics.com/analytics.js www.google.com www.googleadservices.com/pagead/ www.googletagmanager.com www.gstatic.com/_/bmsdk/ www.gstatic.com/recaptcha/ www.gstatic.com/recaptcha/* www.redditstatic.com/ads/pixel.js www.wordontheblock.com/static/conversions.js www.youtube.com; style-src 'report-sample' 'self' 'unsafe-inline' *.abtasty.com *.googleapis.com *.gstatic.com *.liveperson.net *.lpsnmedia.net a.omappapi.com/ apollo-v2.forthepeople.com apollo.forthepeople.com/ app.vwo.com cdn.jsdelivr.net/npm/bootstrap@5.2.1/dist/css/bootstrap.min.css cdn.jsdelivr.net/npm/swiper@11/swiper-bundle.min.css cdn.userway.org common-fonts.abtasty.com fast.wistia.com fonts.googleapis.com p.typekit.net/ static.forthepeople.com tags.srv.stackadapt.com use.typekit.net/ www.googletagmanager.com; worker-src 'self' blob:; upgrade-insecure-requests
X-Drupal-Cache HIT
Vary Accept-Encoding, Cookie, Origin, Cookie, Cookie
Connection keep-alive
X-Drupal-Dynamic-Cache UNCACHEABLE
Accept-Ranges bytes
X-Frame-Options SAMEORIGIN
X-Styx-Req-Id 63fef7a8-13b8-11f0-aec8-f68e6560f104
Age 84836
X-Timer S1744119149.564669,VS0,VE7
Cache-Control max-age=86400, public
Content-Language en
Expires Sun, 19 Nov 1978 05:00:00 GMT
X-Cache HIT, HIT, MISS, MISS
Content-Type text/html; charset=UTF-8
Via 1.1 varnish, 1.1 varnish, 1.1 varnish, 1.1 varnish
Date Tue, 08 Apr 2025 13:32:28 GMT
X-Cache-Hits 37, 314, 0, 0
X-Pantheon-Styx-Hostname styx-fe3-b-657bb69d44-r567j
X-Served-By cache-chi-klot8100124-CHI, cache-ams21082-AMS, cache-ams21050-AMS, cache-ams21050-AMS
Etag W/"1744012128"
Last-Modified Mon, 07 Apr 2025 07:48:48 GMT
Strict-Transport-Security max-age=31622400; includeSubDomains; preload
X-Content-Type-Options nosniff
X-Generator Drupal 10 (https://www.drupal.org)

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar