HTTP Headers Analysis for https://sogafit.net

HTTP Security Headers

Status

Strict-Transport-Security

Missing

Not configured

Content-Security-Policy

Basic

base-uri; object-src; report-uri; +3 more

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Present

origin

Permissions-Policy

Missing

Not configured

Recommendations

• Add Strict-Transport-Security header with max-age of at least 1 year
• Improve CSP by adding more specific directives and removing 'unsafe-inline'
• Consider adding Permissions-Policy to control browser features

Performance Headers

3 headers

Accept-Ranges

Performance

none

Transfer-Encoding

Performance

chunked

Vary

Performance

Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site,Accept-Encoding

Caching Headers

3 headers

Cache-Control

Caching

no-cache, no-store, max-age=0, must-revalidate

Expires

Caching

Mon, 01 Jan 1990 00:00:00 GMT

Pragma

Caching

no-cache

Content Headers

1 headers

Content-Type

Content

text/html; charset=utf-8

Server Headers

1 headers

Server

ESF

CORS Headers

0 headers

No CORS headers found

Cookies Headers

0 headers

No cookies headers found

Other Headers

3 headers

Date

Other

Thu, 06 Nov 2025 15:52:49 GMT

Document-Policy

Other

include-js-call-stacks-in-crash-reports

Reporting-Endpoints

Other

default="/web-reports?jobset=prod&wcrumsspbp=false&bl=editors.sites-viewer-frontend_20251103.03_p0&app=25&clss=1&context=eJwNz3tUzQcAB_Cf3_39vllFb91Cj3uHWiQ51Kq7HreXbOYwu1d2lqmLlEqlJKYOee1x2Ji8Fj1O6coiow1nTe2cMJsw1pYsJfRUKxVW-_7xOef7_f73NR02LxivEyrMdMJiW53wAVnt0wmuNJqvEyYe1glSoU6wpeBzOkH3UCesodounXCHPnbQC0k0MFUvSE56YeObeiGPYsP0Qhpl0i7y87gvjBJm3hecKPBRvxhBXjmDoi_15g6KQ5SVMCTm0rWAYbGBLmuGxTp6YRgWR6l077D4Ha26PiKuoyRhTMyg4SljojB1TBzYNCa-prlLFQp_CsxVKCJoyWOFIpo29fpJOTR70F_yITE_QDKlH04HSD9TpK9GWkzpuiBpC_VFBUsjtL07WPqM_s4OkVqp2hgi1ZCmIkQKo4MpWuk4xWZopQQSK7WSKZ06p5XO0tsXtFIwJbmGShk05BEmjZHvujApiKZtCJNm0Y72MOlz0s8Ll1bSte_DpUY68GWEVExlVE35CZHSCWq1XiB1UpNJlNRGmUsL5G3UsrZAfkYNRmb682KB_A81_HtCbqSQyYVyFLm8Xyi70SdNRXI8be0tkvPo0tpiuZbKE4vlc3S9tVi-TcqzJbILmWSXyhY0Ia9UtiMH5zLZldyWl8leFLKnTI6iJR3lcjRtoCw6tcgon6WWOKP8jK6UGeVfyMejQg6khpoKuZFSY8_Im6lj_Rm5n45UdMiFVF_fKd8ifWCXvJJWXO2SY-mGvlu-QxZHu2V7Ujw2hxlVWkxANU2vngBPul83EQ8pw9sCn9J7BRZYRu0llugh41MrVNHaDiukkImXNSxonMoGb1CVjw0uUZCvDSLJ-4Et_OjJTjv00rbCSdhFM5omYTYdi7VHMZkm2sOaXiYxJ9tjj4sS-2nNPCWeGZToo_MVSlym4WtKCNeV2HLSATvobqEDmihzryO20cteR4jPHXF8yBEldCBpMg5T277J6KKDwVNwhFZETcFK-sPohPq_nHCT3Hqd4EXL-pwQTRdWOOOn1c6oo47zzuinhSYuWEpVPi786oKWeBf0VLvgBWUXuWI7hfa64l1KnK1COs2PUMGf7DaqMJVe5amg2KlCwgkV0ujKTRWukvlvKljREL2m8N9VWEhlVEFfjKpwkArnqFFO_wWoIWvUqAxUo5q64tUYoOdZagzSoWw1jpHwoxrjKfquGqsoSjcdS6hVPx2dpFk-A2HU_K0bWuleuxuaqdrCHTXUZuWOLmq0cUcLvbJ1h8LOHYfu-aGUGgR_3DD64w6NWAZglIyLAlBFY4IGJuM08DfTYCGlfKPBJmr66h20kUERiHVkOi0Q1tQ0MwhtVKMNwi1S1wXBg9Zrg7GRGvODkdsRjD20P1yLwzTJoIWS-hK1GCHLXHbqVYRijBQfhcKM_G-HQkvNPaFop4HKMLwmm9hwKOnk1nCsyQlHMnWnR2CQVKcj8Bb1V0TgJX3tGYmjFDo_Egsoi2ofRuIGFfVEonnvI7RTzNNHiKOcmDbsJtORNlhTak47NlOH_RP0U3nXE2QUPsXxBx0ooSN-nXC72ANr8_ENu6vqYVlTe_pX0VH6MN6QqZppiItPT05N80yLTzekzcrgZkidtTo1OSndkBQX4-3lPW_OHK-5nl5zY1K8_gc9BVvw&build-label=editors.sites-viewer-frontend_20251103.03_p0&imp-sid=CMuO3vTw3ZADFf7AzgAd14QBGg&is-cached-offline=false"

Recommendations

Enable compression (gzip/brotli) to improve performance