HTTP Headers Analysis for https://support.apptio.com

Detected Technologies from Headers

See all in URL Inspect 1

Akamai

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=31536000

Content-Security-Policy

Weak

upgrade-insecure-requests Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Missing

Not configured

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Significantly strengthen CSP directives
• Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close, Transfer-Encoding

Transfer-Encoding

Performance

chunked

connection: close, Transfer-Encoding
transfer-encoding: chunked

Caching Headers

Cache-Control

Caching

private, no-cache, no-store, must-revalidate

Expires

Caching

Mon, 11 May 2026 20:08:33 GMT

Last-Modified

Caching

Sun, 11 May 2025 20:08:33 GMT

cache-control: private, no-cache, no-store, must-revalidate
expires: Mon, 11 May 2026 20:08:33 GMT
last-modified: Sun, 11 May 2025 20:08:33 GMT

Content Headers

Content-Type

Content

text/html;charset=UTF-8

content-type: text/html;charset=UTF-8

Server Headers

No server headers found

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: CookieConsentPolicy=0:1; path=/; expires=Tue, 11-May-2027 20:08:32 GMT; Max-Age=31536000; secure
LSKey-c$CookieConsentPolicy=0:1; path=/; expires=Tue, 11-May-2027 20:08:32 GMT; Max-Age=31536000; secure
PicassoLanguageffd68d21-4b57-478b-8e3e-8d178d3923fePublished=; path=/; expires=Thu, 01-Jan-1970 00:00:00 GMT; Max-Age=0
renderCtx=%7B%22pageId%22%3A%22445465ff-afb4-4cbe-b47d-711adad53c99%22%2C%22schema%22%3A%22Published%22%2C%22viewType%22%3A%22Published%22%2C%22brandingSetId%22%3A%22dd3e8d71-5312-4f04-a6c1-f5981a68f6f1%22%2C%22audienceIds%22%3A%226Au0z000000blMN%22%7D; path=/mysupport/s; secure
_abck=B2102444E174E95517BE7E2694D367EE~-1~YAAQygwDF3gm5vedAQAAEdenGA9lCKs0TFOAXuTLvQ/htfG6UfUogJda0BJil3AUZKBg8TxjPIW2f9plIFk7CApOYRWZTmCMWcv4iSpdTrzzFmAlhSm683Q9rvAntSgDgiJQpAqvs/OoBfVfFQThPYxgwJntunnRdV3Sq474U3tNhbDrmCb6Wg64SHcBt9M8mvDPB8IfqRflFmJed+419PpCbv1FCyqyW9Yosrrr+9c86re2Qn5Dh5mYqEcSq6wk7nQLHlFEqiA6tBHfzZvoSwplyQK6Hwk03guVqvreFgnnv4KvbclI+mEvIg1YUU07vLmF77O7R3pjtF2Z6haHy1KoJ2jV/qBsau/Cihl4XoinO8WvJvseOJvanqb6Ze7bM6tlxAB2SSlRoxyV3YRD4elMnMijRspQHbHmVHbUNqoUt9JwbYYbdjgkS8k2X0JKsD4=~-1~-1~-1~-1~-1; Domain=.ibm.com; Path=/; Expires=Tue, 11 May 2027 20:08:33 GMT; Max-Age=31536000; Secure
bm_sz=FE1BBFAD6E1486A03F8E2A0DF03D1871~YAAQygwDF3km5vedAQAAEdenGB9DjI20ODW7OVpe4HqHjfliyQDy+IFHluevdE9Y/1JMT3GVlMsUx6POcvdJ3zMeAOiFb88nSBYtvl6VMrM9aFJVOITSA6jNpTEvzyEgcZXKnm4kVSAvXYu+b+29vDimCTdaXCp3aJW5gwdsf8buNutMR+wcqAHIpW3DvjVY79F7CMAHicxNyZWbevy1h12ccluYhO79TmCDZECLbuEyf0sQHdhnAGS2baLwEE3Kl1E/tMs3drNYww8/DnPwQq4ZGu+T646ls/gcBJlMX+tEfJ0wTGJf4mnm1SvX9SIpng3oqJqFI5BdV7Nik42DgeqN1aZgj5kkirc=~3682359~4339257; Domain=.ibm.com; Path=/; Expires=Tue, 12 May 2026 00:08:32 GMT; Max-Age=14399

Other Headers

Date

Other

Mon, 11 May 2026 20:08:33 GMT

Link

Other

URL /mysupport/s/sfsites/auraFW/javascript/ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA/aura_prod.js

rel=preload as=script nopush

URL /mysupport/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDA0MDFlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%2Fmysupport%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=17780595870001805203423&rv=1777996527000

rel=preload as=script nopush

URL /mysupport/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.-2147483648.13107200-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=

rel=preload as=script nopush

Server-Timing

Other

Headers;dur=121

Timing-Allow-Origin

Other

*

X-Akamai-Transformed

Other

0 - 0 -

date: Mon, 11 May 2026 20:08:33 GMT
link: </mysupport/s/sfsites/auraFW/javascript/ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA/aura_prod.js>;rel=preload;as=script;nopush,</mysupport/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22fwuid%22%3A%22ZkJhOVpLN2NZQkJrd2NWd3pMcnFOdzJEa1N5enhOU3R5QWl2VzNveFZTbGcxMy4tMjE0NzQ4MzY0OC4xMzEwNzIwMA%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22apce%22%3A1%2C%22apck%22%3A%22JHt0aW1lc3RhbXB9MDAwMDAwMDA0MDFlbl9VUw%22%2C%22mlr%22%3A1%2C%22pathPrefix%22%3A%22%2Fmysupport%22%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/resources.js?pu=1&pv=17780595870001805203423&rv=1777996527000>;rel=preload;as=script;nopush,</mysupport/s/sfsites/l/%7B%22mode%22%3A%22PROD%22%2C%22dfs%22%3A%228%22%2C%22app%22%3A%22siteforce%3AcommunityApp%22%2C%22serializationVersion%22%3A%221-13.-2147483648.13107200-b%22%2C%22parts%22%3A%22f%22%2C%22loaded%22%3A%7B%22APPLICATION%40markup%3A%2F%2Fsiteforce%3AcommunityApp%22%3A%221544_-QE8H35gPOQmfpGx0OKiMg%22%7D%2C%22dns%22%3A%22c%22%2C%22ls%22%3A1%2C%22lrmc%22%3A%22551347034%22%7D/app.js?3=>;rel=preload;as=script;nopush
server-timing: Headers;dur=121
timing-allow-origin: *
x-akamai-transformed: 0 - 0 -

Recommendations

Enable compression (gzip/brotli) to improve performance