Open
Cached
·
just now
21
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000; includeSubdomains
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
connection: close
Caching Headers
Cache-Control
must-revalidate,no-cache,no-store
cache-control: must-revalidate,no-cache,no-store
Content Headers
Content-Length
47
Content-Type
application/json;charset=iso-8859-1
content-length: 47 content-type: application/json;charset=iso-8859-1
Server Headers
Server
Apple
server: Apple
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Apple-Originating-System
MZAuth
Apple-Seq
0.0
Apple-Tk
false
B3
5e7d24ba86710148b541880bf8510515-66d8d6567c58a2f5
Date
Sat, 04 Apr 2026 01:13:38 GMT
X-Apple-Jingle-Correlation-Key
LZ6SJOUGOEAURNKBRAF7QUIFCU
X-Apple-Request-Uuid
5e7d24ba-8671-0148-b541-880bf8510515
X-B3-Spanid
66d8d6567c58a2f5
X-B3-Traceid
5e7d24ba86710148b541880bf8510515
X-Daiquiri-Debug-Worker-Pid
39939
X-Daiquiri-Instance
daiquiri:41787002:st53p00it-qujn13050302:7987:26RELEASE56:daiquiri-amp-commerce-l7services-int-003-st
X-Responding-Instance
MZAuth:20037:::
apple-originating-system: MZAuth apple-seq: 0.0 apple-tk: false b3: 5e7d24ba86710148b541880bf8510515-66d8d6567c58a2f5 date: Sat, 04 Apr 2026 01:13:38 GMT x-apple-jingle-correlation-key: LZ6SJOUGOEAURNKBRAF7QUIFCU x-apple-request-uuid: 5e7d24ba-8671-0148-b541-880bf8510515 x-b3-spanid: 66d8d6567c58a2f5 x-b3-traceid: 5e7d24ba86710148b541880bf8510515 x-daiquiri-debug-worker-pid: 39939 x-daiquiri-instance: daiquiri:41787002:st53p00it-qujn13050302:7987:26RELEASE56:daiquiri-amp-commerce-l7services-int-003-st x-responding-instance: MZAuth:20037:::
Recommendations
Enable compression (gzip/brotli) to improve performance