ontariosciencecentre.ca | Analytics by SecurityHeaders

HTTP Headers report for ontariosciencecentre.ca

Header Name Header Data
HTTP status code 200
Cache-Control private
Access-Control-Allow-Origin https://consent.trustarc.com
X-Frame-Options SAMEORIGIN
Strict-Transport-Security max-age=63072000; includeSubDomains; preload
X-Xss-Protection 1; mode=block
Content-Security-Policy default-src 'self' *.trustarc.com *.truste.com www.youtube.com youtube.com embedr.flickr.com www.facebook.com facebook.com player.vimeo.com *.vimeocdn.com my.matterport.com packages.umbraco.org our.umbraco.org www.google-analytics.com *.typekit.net stats.g.doubleclick.net 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.trustarc.com *.truste.com embedr.flickr.com *.youtube.com * *.my.matterport.com *.ytimg.com www.gstatic.com www.google.com www.googletagmanager.com www.google-analytics.com stats.g.doubleclick.net code.jquery.com cdn.jsdelivr.net stackpath.bootstrapcdn.com ajax.aspnetcdn.com cdnjs.cloudflare.com *.typekit.net ajax.googleapis.com; style-src 'self' 'unsafe-inline' *.trustarc.com *.truste.com fonts.googleapis.com embedr.flickr.com cdnjs.cloudflare.com *.typekit.net cdn.jsdelivr.net stackpath.bootstrapcdn.com ajax.aspnetcdn.com ajax.googleapis.com stats.g.doubleclick.net code.jquery.com; img-src 'self' *.trustarc.com *.truste.com seal.entrust.net live.staticflickr.com embedr.flickr.com i.ytimg.com *.google.com *.google.ca www.google-analytics.com www.youtube.com my.matterport.com *.typekit.net umbraco.tv *.googleapis.com code.jquery.com cdnjs.cloudflare.com www.googletagmanager.com stats.g.doubleclick.net data:; font-src 'self' *.trustarc.com *.truste.com fonts.googleapis.com fonts.gstatic.com embedr.flickr.com cdnjs.cloudflare.com *.typekit.net cdn.jsdelivr.net ; frame-src 'self' *.trustarc.com *.truste.com *.vimeo.com *.facebook.com embedr.flickr.com facebook.com *.fbcdn.net *.facebook.net video.fyka1-1.fna.fbcdn.net secure.campaigner.com *.youtube.com *.my.matterport.com * www.google.com; form-action 'self'; base-uri 'self';
Date Tue, 08 Apr 2025 12:21:09 GMT
Content-Type text/html; charset=utf-8
Access-Control-Allow-Methods GET,POST,OPTIONS
Access-Control-Allow-Headers Content-Type
X-Content-Type-Options nosniff
Content-Length 49235

About the tool

By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.

This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.

We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.

Watch it now at TrustRadar