Open
Cached
·
just now
21
Headers
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000; includeSubdomains
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
connection: close
Caching Headers
Cache-Control
must-revalidate,no-cache,no-store
cache-control: must-revalidate,no-cache,no-store
Content Headers
Content-Length
47
Content-Type
application/json;charset=iso-8859-1
content-length: 47 content-type: application/json;charset=iso-8859-1
Server Headers
Server
Apple
server: Apple
CORS Headers
No CORS headers found
Cookies Headers
Other Headers
Apple-Originating-System
MZAuth
Apple-Seq
0.0
Apple-Tk
false
B3
164f05f37ed4ea11b0a7610ca47bc304-6f1d5603d73f2412
Date
Tue, 28 Apr 2026 03:55:48 GMT
X-Apple-Jingle-Correlation-Key
CZHQL4362TVBDMFHMEGKI66DAQ
X-Apple-Request-Uuid
164f05f3-7ed4-ea11-b0a7-610ca47bc304
X-B3-Spanid
6f1d5603d73f2412
X-B3-Traceid
164f05f37ed4ea11b0a7610ca47bc304
X-Daiquiri-Debug-Worker-Pid
119774
X-Daiquiri-Instance
daiquiri:41787001:st53p00it-qujn12040502:7987:26HOTFIX15:daiquiri-amp-commerce-l7services-int-003-st
X-Responding-Instance
MZAuth:20022:::
apple-originating-system: MZAuth apple-seq: 0.0 apple-tk: false b3: 164f05f37ed4ea11b0a7610ca47bc304-6f1d5603d73f2412 date: Tue, 28 Apr 2026 03:55:48 GMT x-apple-jingle-correlation-key: CZHQL4362TVBDMFHMEGKI66DAQ x-apple-request-uuid: 164f05f3-7ed4-ea11-b0a7-610ca47bc304 x-b3-spanid: 6f1d5603d73f2412 x-b3-traceid: 164f05f37ed4ea11b0a7610ca47bc304 x-daiquiri-debug-worker-pid: 119774 x-daiquiri-instance: daiquiri:41787001:st53p00it-qujn12040502:7987:26HOTFIX15:daiquiri-amp-commerce-l7services-int-003-st x-responding-instance: MZAuth:20022:::
Recommendations
Enable compression (gzip/brotli) to improve performance