HTTP Headers Analysis for https://office.ooma.eu

Detected Technologies from Headers

See all in URL Inspect 5

Bootstrap

BootstrapCDN

Cloudflare CDN

Cloudflare CDNJS

Font Awesome

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=15724800; includeSubDomains

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Good

SAMEORIGIN

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Good

strict-origin-when-cross-origin

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

connection: close
transfer-encoding: chunked

Caching Headers

Cache-Control

Caching

no-store

Expires

Caching

Fri, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

cache-control: no-store
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache

Content Headers

Content-Type

Content

text/html; charset=utf-8

content-type: text/html; charset=utf-8

Server Headers

Server

cloudflare

X-Runtime

Server

0.025525

server: cloudflare
x-runtime: 0.025525

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: new_ui=true; path=/; secure; expires=Sun, 17 May 2026 00:36:14 GMT; SameSite=Lax; secure
login_token=DQ17H1k2iJNDFGZLtfnxt_z0WLV1Bi_L_NSJ04lMqFm--Bm-y4rIkUmibgix0dhzpCEfiMnum6s04pNPSKGWsg; path=/; secure; SameSite=Lax; secure
_office_session2=c3p7RWx%2BZ9TPczpS7ITSsedw9N8%2F0Eawv80u3pGly7yX7FNRCWwbZ1ViZ1p%2BEPban5M%2Ba9SmAt07ZRd5BS12mY3eDpVkCFix2miPew6v0J2xT6hTrq3mIRGOJOtaEmA%2BQkc8Jr9u7Yp8pq3M%2B8MkywlrjSGGz3gNwUE5%2FdV58JWr%2BtKHjqoYlm7XosQeXALpBElQfbJhCKgbRGPCjY5APdNDyuAOUU%2BhNM2xMLcGV4o3OU51gpyrGWAGW%2FOWLDc4%2BEgjlh%2BgZ1osHbQYxANIwyvcPnTNorglfR44J0RhPmHKaOvZiQF654S7cSRoMZSvLw5Zwa%2B2hOUL35WD2tcGXiOvUYrPfbL59vy3VEVRVeuBLO9b0KSQazRt3zVMXdpbo70OXyUY14T%2BNLrEx1gC%2FAGRUzl2jxkNiPCj1lag4xKGxSwSy9XRoczYdKl5S0n5GQ4L17%2BmVS0xaZ1RxxVWf3ahqTd%2BaKapa7QRGeIoKr6gsN1oYnQBrxwpoZQuTDor8k79mS3b--KFGaTU3QUrbVMoNp--6z7y51W4bm%2BLaaM2HvZbww%3D%3D; path=/; secure; expires=Mon, 15 Jun 2026 00:36:14 GMT; secure; HttpOnly; SameSite=Lax
__cf_bm=gT2aWzqjR3i2oyAzjUGtwjTIOzFmZzS5GKX37Okf360-1778891774.1055295-1.0.1.1-zxHo4g5FuTtavAknytkEiD6WFcAKzMk6pbCbNgQRVPNf2IJd3gob24aJJensPrl_h31hBz3HmLYCcDziCqV.ZPFnljZSGza3pm8IA_OCI9n4FM6vPrgs6wgcD9x4yYxA; HttpOnly; SameSite=None; Secure; Path=/; Domain=ooma.eu; Expires=Sat, 16 May 2026 01:06:14 GMT

Other Headers

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9fc64e942cdb1715-IAD

Date

Other

Sat, 16 May 2026 00:36:14 GMT

Link

Other

URL

//maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css

rel=preload as=style nopush

URL

//cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css

rel=preload as=style nopush

URL /assets/common/fonts_branding_2019-5da6f23bac2ee027e8db9d1709c8e611465c1a99483d86d04a731cc60bcc4b05.css

rel=preload as=style nopush

URL /assets/common/login_v3-f8cddc8d5a4a82289d8c0d3db67ff6f236fefb2cd43ceba4092cb371a0a00ad4.css

rel=preload as=style nopush

URL

//maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css

rel=preload as=style nopush

URL

//cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css

rel=preload as=style nopush

URL /assets/common/fonts_branding_2019-5da6f23bac2ee027e8db9d1709c8e611465c1a99483d86d04a731cc60bcc4b05.css

rel=preload as=style nopush

URL /assets/common/login_v3-f8cddc8d5a4a82289d8c0d3db67ff6f236fefb2cd43ceba4092cb371a0a00ad4.css

rel=preload as=style nopush

URL /assets/javascripts/i18n_stack_lite-7ce4dcc9d1a0d615c9a932bc5c3b0b7e0dea3c8520d9850d1291d83278747626.js

rel=preload as=script nopush

URL /assets/javascripts/i18n/locales/en-common-70789adac714b2f67450c3ebe96a816f4209255baa32d2d165f741f5b9390742.js

rel=preload as=script nopush

URL /assets/javascripts/i18n/locales/en-3d295109cc1f60b79015ef95fab813441372045ac2336ea8dac2d51d33308ec2.js

rel=preload as=script nopush

URL /assets/login_v3-92d3d9499ffcf0b37b58d449d24d3536bd71f3f076075c04be1b2c557100135b.js

rel=preload as=script nopush

X-Download-Options

Other

noopen

X-Permitted-Cross-Domain-Policies

Other

none

X-Request-Id

Other

462e4fb82b038ac04309c6e249100829

cf-cache-status: DYNAMIC
cf-ray: 9fc64e942cdb1715-IAD
date: Sat, 16 May 2026 00:36:14 GMT
link: <//maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css>; rel=preload; as=style; nopush,<//cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css>; rel=preload; as=style; nopush,</assets/common/fonts_branding_2019-5da6f23bac2ee027e8db9d1709c8e611465c1a99483d86d04a731cc60bcc4b05.css>; rel=preload; as=style; nopush,</assets/common/login_v3-f8cddc8d5a4a82289d8c0d3db67ff6f236fefb2cd43ceba4092cb371a0a00ad4.css>; rel=preload; as=style; nopush,</assets/javascripts/i18n_stack_lite-7ce4dcc9d1a0d615c9a932bc5c3b0b7e0dea3c8520d9850d1291d83278747626.js>; rel=preload; as=script; nopush,</assets/javascripts/i18n/locales/en-common-70789adac714b2f67450c3ebe96a816f4209255baa32d2d165f741f5b9390742.js>; rel=preload; as=script; nopush,</assets/javascripts/i18n/locales/en-3d295109cc1f60b79015ef95fab813441372045ac2336ea8dac2d51d33308ec2.js>; rel=preload; as=script; nopush,</assets/login_v3-92d3d9499ffcf0b37b58d449d24d3536bd71f3f076075c04be1b2c557100135b.js>; rel=preload; as=script; nopush
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 462e4fb82b038ac04309c6e249100829

Recommendations

Enable compression (gzip/brotli) to improve performance