htm.nl | Analytics by SecurityHeaders

HTTP Headers report for htm.nl

Header Name Header Data
HTTP status code 200
X-Frame-Options SAMEORIGIN
X-Cache CONFIG_NOCACHE
Access-Control-Allow-Origin *
Vary Accept-Encoding
Content-Security-Policy script-src *.clarity.com *.survicate.com *.adform.net *.facebook.net *.zemanta.com 'self' 'unsafe-inline' *.youtube.com *.vimeo.com maps.googleapis.com *.google-analytics.com *.googletagmanager.com https://widget.eu.surveymonkey.com https://ajax.googleapis.com *.google.com/recaptcha/ *.gstatic.com/recaptcha/ https://*.cookiebot.com https://*.clarity.ms https://c.bing.com; style-src *.survicate.com *.googletagmanager.com 'self' 'unsafe-inline' fonts.googleapis.com; font-src *.survicate.com 'self' data: fonts.gstatic.com; connect-src *.survicate.com *.clarity.ms *.doubleclick.net 'self' maps.googleapis.com *.analytics.google.com *.googletagmanager.com consentcdn.cookiebot.com https://*.cookiebot.com https://*.google-analytics.com; img-src *.cloudinary.com *.survicate.com *.clarity.ms *.bing.com *.facebook.com *.zemanta.com *.google.nl *.cookiebot.com *.ytimg.com *.vimeocdn.com *.maps.gstatic.com *.maps.googleapis.com *.google-analytics.com *.analytics.google.com *.googletagmanager.com *.gstatic.com 'self' data: maps.gstatic.com maps.googleapis.com; form-action 'self' ideal.ing.nl betalen.rabobank.nl www.abnamro.nl diensten.asnbank.nl ideal2.knab.nl diensten.regiobank.nl diensten.snsbank.nl ideal.triodos.nl *.vanlanschotkempen.com ideal.bunq.com *.buckaroo.nl *.b2clogin.com *.facebook.com https://htmnlb2c.b2clogin.com pay.ideal.nl; frame-src *.vimeo.com *.youtuve-nocookie.com *.google.com *.doubleclick.net connect.facebook.net/:1 cookiebot.com *.surveymonkey.com *.youtube-nocookie.com *.facebook.com htm-webcms-prd-win.azurewebsites.net 'self' consentcdn.cookiebot.com https://eu.surveymonkey.com; base-uri 'self'; default-src 'self'; frame-ancestors 'self' *.buckaroo.nl; manifest-src 'self'
Connection keep-alive
Cache-Control no-cache, no-store
Set-Cookie .AspNetCore.Antiforgery.cdV5uW_Ejgc=CfDJ8AN-CgSpkQhKtxDfBKHS-CK-cEjkOuE0gKBBjq92Ty2lw_3RkTj_hVmFRK8nY41E43tQ9QUF5_X9l4UsF0dtq_yMuQbpei9kToVRs9UJvwutsel-yzMFWa7LgnlNMEuqW4mw77jI5caz2tlhG5DM09I; path=/; samesite=strict; httponly
Strict-Transport-Security max-age=31536000; preload
Request-Context appId=cid-v1:978f4787-091d-4745-96c4-3a463dc111c2
Date Sat, 19 Apr 2025 01:43:41 GMT
Content-Type text/html; charset=utf-8
Referrer-Policy strict-origin-when-cross-origin
X-Powered-By ASP.NET
Permissions-Policy accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), browsing-topics=(), camera=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), gamepad=(), geolocation=self, gyroscope=(), hid=(), identity-credentials-get=(), idle-detection=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), publickey-credentials-create=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), speaker-selection=(), storage-access=(), usb=(), web-share=(), window-management=(), xr-spatial-tracking=()
X-Azure-Ref 20250419T014341Z-r175cd98c7cg6252hC1DUS6pqn0000000akg00000000ad3s
Pragma no-cache
X-Content-Type-Options nosniff
X-Xss-Protection 0

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar