online.princeton.edu | Analytics by SecurityHeaders

HTTP Headers report for online.princeton.edu

Header Name Header Data
HTTP status code 200
X-Cache-Hits 2
Connection keep-alive
X-Content-Type-Options nosniff
Expires Sun, 19 Nov 1978 05:00:00 GMT
Vary Cookie,Accept-Encoding
X-Xss-Protection 1; mode=block
X-Ah-Environment 01live
X-Cache HIT
Cf-Cache-Status REVALIDATED
Cache-Control max-age=60, public, s-maxage=86400
X-Drupal-Dynamic-Cache HIT
X-Generator Drupal 10 (https://www.drupal.org)
Strict-Transport-Security max-age=31536000
Via varnish
Server cloudflare
Cf-Ray 92c12455d986d655-AMS
Date Sun, 06 Apr 2025 12:03:26 GMT
Content-Type text/html; charset=UTF-8
Last-Modified Sat, 05 Apr 2025 16:40:40 GMT
Content-Security-Policy default-src 'self'; connect-src 'self' https://*.princeton.edu https://*.google-analytics.com https://*.analytics.google.com https://analytics.google.com https://*.googletagmanager.com https://*.elfsight.com https://api.instacloud.io https://*.textrecruit.com https://*.juicer.io https://*.facebook.com; font-src 'self' https://*.typekit.net https://*.gstatic.com https://*.juicer.io data:; frame-ancestors 'self'; frame-src 'self' https://*.princeton.edu https://*.mediacentral.princeton.edu https://*.knightlab.com https://*.adobe.com https://*.vimeo.com https://*.youtube.com https://*.google.com https://*.elfsight.com https://*.kaltura.com https://*.twitter.com https://*.shinyapps.io https://*.textrecruit.com https://*.juicer.io https://*.recaptcha.net; img-src 'self' https://*.google.com https://*.google-analytics.com https://*.googletagmanager.com https://*.typekit.net https://*.cdninstagram.com https://*.gstatic.com https://*.basemaps.cartocdn.com https://*.googleapis.com https://*.twitter.com https://*.twimg.com https://*.textrecruit.com https://*.imgur.com https://*.fbcdn.net https://*.juicer.io https://*.elfsightcdn.com https://*.elfsight.com https://*.youtube.com https://*.vimeocdn.com data:; media-src 'self' https://*.elfsightcdn.com https://*.fbcdn.net; script-src 'self' https://cdn.ckeditor.com/ https://*.google-analytics.com https://*.google.com https://*.googletagmanager.com https://js-agent.newrelic.com https://bam.nr-data.net https://*.typekit.net https://*.elfsight.com https://*.elfsightcdn.com https://api.instacloud.io https://*.googleapis.com https://*.twitter.com https://*.twimg.com https://*.textrecruit.com https://*.juicer.io https://*.recaptcha.net https://*.gstatic.com 'unsafe-inline' 'unsafe-eval'; style-src 'self' https://*.google.com https://*.typekit.net https://*.elfsight.com https://*.twitter.com https://*.twimg.com https://*.textrecruit.com https://*.googleapis.com https://*.juicer.io 'unsafe-inline'; upgrade-insecure-requests
Content-Language en
Referrer-Policy strict-origin
X-Request-Id v-b5abf252-123c-11f0-a133-1f47bccdaade

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar