HTTP Headers Analysis for https://licensing.apereo.org

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

base-uri; object-src; report-uri; +3 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

none

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

ESF

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

3 headers

Date

Other

Tue, 04 Nov 2025 08:42:37 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&bl=editors.sites-viewer-frontend_20251029.02_p0&app=25&clss=1&context=eJwN0H9czHccB_Cv730-71qi37qSuu5ILeq0B6U6_biuks08mN3JHgt1SKlWKb_VAzP244ExYRanVjpHZJPhsdAej-JhE8aasJTkVKdWuoza64_n4_F6vf582VntS221gmm0VpjnqhU-AqfdWsEXhku0wtiDWoEZtIIrqM5qBe1jrbACrnVphTvwqYdOyIL-CTqBeeuENRN1wnZI1eiEPCiEHRAeeF8YBppyX_CGqCd9YgIoiwbEMLAUD4iDsC5jUCyGxkir2ASXVFaxHl7preIwVOyyiqdh2fUhcRVkCSNiAVi9RkRhwojYv3ZEfAPvLZBIIiCqWCJJgPlPJZJkWGsJZ0UQPBDBQkEsiWR2cOFkJLsCiWEqNg9OT5zFzkO-NppthN6kGDYEW7tj2JfwYEMsa4NaYyyrA5Uplmlgf46aHYHUAjXLALFazezgxFk1OwMzf1azGMjyjWMFMBioYSMQtkrDomHSZxo2FbZ1aNhXoJsez5ZA40_xrBn2fZPAyqASaqEkI5EdhTbn2ewFtNgksXYoXFDKt0DrylL-HJqMyPDX-VL-DzT9e5Q3Q-x4A08C2YcG7g9LW47zdNhkOc63w8WVZfwaVGWW8bNwva2M3wbpmXIuA5sNFdwBxmyv4G7g4VPJfcF_USVXQuzOSp4E881VPBkmzzHyYDgx18jPQGuakT-Hy5VG_huEBpp4FDTVmXgz5Kae4uvBvPoU74NDJjM3QEPDC34LdFFdfAksvtrFU-GGrpvfAYfD3dwdJE_taTRUO4yhWvCrHUNBcL9-LD2GghAH2gwflDrQQugod6Qe2PWJE-0FY6cT1cBKsxPlgI3SmRxglNyF3oGaUBe6CNFhLpQIM5a60CwIeehK4fDsczeywBbDONoBk1vGUTB8n-pOZWCX6U7O8DoLOduddsqktAdWTJfSc72UeuGcSUqXwNooJeG6lDYe86BtcNfgQS1QuMuTtsBriyeJLz3pyKAnlcO-rPF0ENp3j6cu2B_jRYdgcZIXLYGCC160Gf40elPD3950E9pavKkT_C3epISFvd6UDJcW-9Cvy32oHsznfKgP5tjIaAHUhMrwgYxa02XUUyujV7DhuC9thTiLL70PmcFyyocZCXKKALc1cpoAGUfllAeXb8rpKtj_LicnGIQ3EP2HnDRQCSb4elhO-8EwTUFV8DZSQVyloOooBdVCV7qC-uHlOgUNgPCLgmwh-a6ClkGS1o_mQ5vOj16AatFk0sCjH_ypDe51-NMjqHUIoDpodwqgLmh2CaBW-M81gCRuAXTgXjhVwG0hgm4YI-gODDlG0jAY50ZSDYwIKrIZpaKI0SqaAznfqWgttOydRe2gl0TRKrCbFEXO0DIlmtqhTh1Nt0BRH02BsFodQ2uguSSGis0xtBP2xKvpIIzTq0kKvZlqGgLHYnSwSOJoBCJux5EaHvXEUQf0V2voDbikxpMUjm2KpxVF8ZQN3fkJNADykwn0LvSZEug1fBuUSIchbkYizYZ1cOFxIl2BlM4nlAZFKe30BQhD7WQLuUUdtB7M7s-oD6q6nlGBoZOOPDRTOfid7yFne9u31h8byPFW44EHoif7OF1fKJ-iT0vPz87NC8pLz9fnTS3Aps-dujw3Oytfn5WWEqIMmT5NGTIzSBmSkqP8H9GSWCk&build-label=editors.sites-viewer-frontend_20251029.02_p0&imp-sid=CKuplYON2JADFW1IqwIdX8U5uA&is-cached-offline=false"

Recommendations

Enable compression (gzip/brotli) to improve performance