Open
Cached
·
just now
20
Headers
Detected Technologies from Headers
AppNexus (Xandr)
Amazon S3
Bing
Ceros
Cloudflare CDN
Contentsquare
Demandbase
Oracle Eloqua
GitHub
Active incidents
Google Analytics
Google API JS Client
Google Conversion Tracking
Google DoubleClick
Google Fonts
Google Static File Front End
Google Tag Manager
Liveramp
Microsoft Clarity
Optimizely
YouTube
Google Cloud
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=31536000; includeSubdomains; preload
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Present
nosniff, nosniff
Referrer-Policy
Good
strict-origin-when-cross-origin
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Consider adding Permissions-Policy to control browser features
Performance Headers
Connection
close
Transfer-Encoding
chunked
Vary
Accept-Encoding
connection: close transfer-encoding: chunked vary: Accept-Encoding
Caching Headers
Age
4188
Cache-Control
public, s-maxage=3600, max-age=300, stale-while-revalidate=600, stale-if-error=3600
Etag
W/"1680c-653842ba48e47-br"
Last-Modified
Fri, 05 Jun 2026 16:29:53 GMT
age: 4188 cache-control: public, s-maxage=3600, max-age=300, stale-while-revalidate=600, stale-if-error=3600 etag: W/"1680c-653842ba48e47-br" last-modified: Fri, 05 Jun 2026 16:29:53 GMT
Content Headers
Content-Type
text/html;charset=utf-8
content-type: text/html;charset=utf-8
Server Headers
Server
cloudflare
server: cloudflare
CORS Headers
Access-Control-Allow-Origin
https://centinelapistag.cardinalcommerce.com/
access-control-allow-origin: https://centinelapistag.cardinalcommerce.com/
Cookies Headers
Other Headers
Cf-Cache-Status
DYNAMIC
Cf-Ray
a070f5473c7ed69c-IAD
Date
Fri, 05 Jun 2026 17:39:41 GMT
cf-cache-status: DYNAMIC cf-ray: a070f5473c7ed69c-IAD date: Fri, 05 Jun 2026 17:39:41 GMT
Recommendations
Enable compression (gzip/brotli) to improve performance