| Header Name | Header Data |
|---|---|
| HTTP status code | 200 |
| Content-Type | text/html; charset=utf-8 |
| Expires | Sat, 05 Apr 2025 20:48:16 GMT |
| Cache-Control | max-age=0, no-cache, no-store |
| Access-Control-Allow-Credentials | true |
| Vary | User-Agent, Accept-Encoding |
| Pragma | no-cache |
| Set-Cookie | AWSALB=xeZjDQckvSpOx3Ytugd+NifK0i+6FIyciLTOCpwoU+s+Jo2cf9W2efNhTHip5zFrdd0asAGaj2fflqKaXkMZ0VSrHadwCEHX6peGZja+R2nj8u2zV8IpBW6Kf0f4; Expires=Sat, 12 Apr 2025 20:48:16 GMT; Path=/ |
| X-Content-Type-Options | nosniff |
| Strict-Transport-Security | max-age=31536000; includeSubDomains |
| X-Download-Options | noopen |
| X-Akamai-Transformed | 9 - 0 pmb=mTOE,1 |
| Date | Sat, 05 Apr 2025 20:48:16 GMT |
| X-Xss-Protection | 1; mode=block |
| Referrer-Policy | no-referrer-when-downgrade |
| Etag | W/"14846-ptOZFGYJyysBhJ0ccmuoalS2+L8" |
| Access-Control-Allow-Methods | OPTIONS, HEAD, GET, POST, PUT, DELETE |
| Content-Security-Policy | default-src 'self' blob: *.psprint.com psprint.com api.psprint.com *.wistia.com *.wistia.net cdn.widerfunnel.com *.lpsnmedia.net *.demdex.net c.go-mpulse.net; script-src 'self' blob 'unsafe-inline' 'unsafe-eval' acsbap.com acsbapp.com www.gstatic.com *.adobedtm.com *.optimizely.com www.googletagmanager.com *.quantummetric.com *.cdn.optimizely.com *.psprint.com psprint.com api.psprint.com www.google.com *.wistia.com *.wistia.net *.psprint-uat.com psprint-uat.com ajax.googleapis.com *.braintreegateway.com www.googleadservices.com sstats.deluxe.com www.google-analytics.com *.hotjar.com bat.bing.com connect.facebook.net googleads.g.doubleclick.net www.shopperapproved.com www.sc.pages04.net shopperapproved.com *.shopperapproved.com static.addtoany.com lptag.liveperson.net www.googleadservices.com www.sc.pages04.net *.dfsfullcolor-uat.com *.lpsnmedia.net va.v.liveperson.net *.safeguardw2p-uat.com cdn.widerfunnel.com *.braintreegateway.com assets.pinterest.com cdn.widerfunnel.com assets.pinterest.com *.cdn.optimizely.com *.adobedtm.com www.googletagmanager.com *.qualtrics.com *.tt.omtrdc.net *.demdex.net s.go-mpulse.net *.tagmanager.google.com dqm.crownpeak.com tag.wknd.ai *.bounceexchange.com *.cookielaw.org geolocation.onetrust.com *.clarity.ms www.youtube.com; img-src 'self' acsbap.com acsbapp.com google.co.in *.psprint.com psprint.com api.psprint.com stats.deluxe.com data: *.wistia.com *.wistia.net www.googletagmanager.com ad.doubleclick.net sstats.deluxe.com embedwistia-a.akamaihd.net bat.bing.com www.google-analytics.com www.facebook.com stats.g.doubleclick.net *.google.com www.google.com.ua googleads.g.doubleclick.net shareasale.com www.pages04.net www.shopperapproved.com shopperapproved.com *.shopperapproved.com 52.45.162.79 *.dfsfullcolor.com *.safeguardw2p.com cdn.widerfunnel.com log.pinterest.com *.dfsfullcolor-uat.com api.safeguardw2p-uat.com safeguardw2p-uat.com *.cdn.optimizely.com *.adobedtm.com www.googletagmanager.com *.lpsnmedia.net *.qualtrics.com *.tt.omtrdc.net *.demdex.net c.go-mpulse.net cm.everesttech.net *.tagmanager.google.com dqm.crownpeak.com *.bounceexchange.com *.bouncex.net *.cdnwidget.com cdn.cookielaw.org *.clarity.ms *.bing.com *.bing.net https://c683207.ssl.cf2.rackcdn.com/12284-r.gif; style-src 'self' 'unsafe-inline' *.psprint.com psprint.com stats.g.doubleclick.net fonts.googleapis.com *.dfsfullcolor.com *.safeguardw2p.com safeguardw2p-uat.com cdn.widerfunnel.com *.cdn.optimizely.com *.adobedtm.com www.googletagmanager.com *.qualtrics.com *.demdex.net *.tagmanager.google.com *.bounceexchange.com; font-src 'self' data: acsbap.com acsbapp.com *.psprint.com psprint.com fonts.gstatic.com cdn.widerfunnel.com *.cdn.optimizely.com *.adobedtm.com stackpath.bootstrapcdn.com www.googletagmanager.com *.demdex.net *.tagmanager.google.com *.bounceexchange.com; frame-src 'self' acsbap.com acsbapp.com accessibe.com www.google.com *.cdn.optimizely.com *.optimizely.com *.wistia.com *.wistia.net doubleclick.net bid.g.doubleclick.net *.hotjar.com www.facebook.com *.braintreegateway.com www.emjcd.com cj.dotomi.com static.addtoany.com www.youtube.com www.emjcd.com *.dfsfullcolor.com www.brainshark.com *.lpsnmedia.net va.v.liveperson.net *.safeguardw2p.com cdn.widerfunnel.com assets.pinterest.com *.psprint.com psprint.com api.psprint.com listmodulev3.usadata.com sales.liveperson.net *.liveperson.net lptag.liveperson.net *.cdn.optimizely.com *.adobedtm.com www.googletagmanager.com *.qualtrics.com *.tt.omtrdc.net *.demdex.net c.go-mpulse.net *.tagmanager.google.com dqm.crownpeak.com *.doubleclick.net *.bounceexchange.com *.quantummetric.com; connect-src 'self' acsbap.com acsbapp.com cdn.acsbapp.com apis.google.com *.quantummetric.com *.optimizely.com *.psprint.com psprint.com api.psprint.com api.ipify.org *.wistia.com *.wistia.net *.cdn.optimizely.com fg8vvsvnieiv3ej16jby.litix.io ws://files.psprint.com wss://files.psprint.com sstats.deluxe.com stats.g.doubleclick.net www.facebook.com in.hotjar.com api.braintreegateway.com origin-analytics.braintree-api.com client-analytics.braintreegateway.com embedwistia-a.akamaihd.net *.dfsfullcolor.com *.safeguardw2p.com *.braintreegateway.com stats.addtoany.com www.google-analytics.com safeguardw2p.com *.cdn.optimizely.com *.adobedtm.com www.googletagmanager.com *.litix.io *.hotjar.io wss://ws1.hotjar.com wss://ws2.hotjar.com wss://ws5.hotjar.com wss://ws6.hotjar.com wss://ws7.hotjar.com wss://ws8.hotjar.com siteintercept.qualtrics.com *.qualtrics.com *.tt.omtrdc.net *.demdex.net c.go-mpulse.net *.akstat.io *.akamaihd.net *.tagmanager.google.com api.crownpeak.net *.bouncex.net *.bounceexchange.com *.cdnwidget.com *.cdnbasket.net *.cookielaw.org *.onetrust.com *.clarity.ms www.google.com *.bing.net region1.google-analytics.com; object-src 'none' |
| Feature-Policy | geolocation 'none';midi 'none';sync-xhr 'self';microphone 'none';camera 'none';magnetometer 'none';gyroscope 'none';speaker 'self';fullscreen 'self';payment 'none' |
| Connection | keep-alive |
| X-Frame-Options | SAMEORIGIN |
| Access-Control-Allow-Origin | * |
| Access-Control-Allow-Headers | Content-Type, Content-Range, Content-Disposition, Authorization,X-Requested-With, X-HTTP-Method-Override, Accept |
By using SecurityHeaders.info, you can quickly identify missing or misconfigured headers and take steps to secure your website, improving both security and user confidence.
This tool is widely used by developers, security professionals, and organizations to ensure their websites adhere to best practices in web security.
We also have another analytic tool that is used for identifying popularity metrics, general information about the business, finding similar products and competitors, and much more.
Watch it now at TrustRadar