HTTP Headers Analysis for https://www.thinkific.com

Detected Technologies from Headers

See all in URL Inspect 4

Cloudflare NEL Monitoring

Cloudflare CDN

Kinsta

Thinkific

HTTP Security Headers

Status

Strict-Transport-Security

Present

max-age=63072000; preload

Content-Security-Policy

Missing

Not configured Analyze

Content-Security-Policy-Report-Only

Missing

Not configured Analyze

X-Frame-Options

Excellent

DENY

X-Content-Type-Options

Good

nosniff

Referrer-Policy

Missing

Not configured

Permissions-Policy

Missing

Not configured

Recommendations

• Increase HSTS max-age to at least 1 year and add includeSubDomains
• Add Content-Security-Policy header to prevent XSS attacks
• Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
• Consider adding Permissions-Policy to control browser features

Performance Headers

Connection

Performance

close

Transfer-Encoding

Performance

chunked

Vary

Performance

Accept-Encoding

connection: close
transfer-encoding: chunked
vary: Accept-Encoding

Caching Headers

No caching headers found

Content Headers

Content-Type

Content

text/html; charset=UTF-8

content-type: text/html; charset=UTF-8

Server Headers

Server

cloudflare

server: cloudflare

CORS Headers

No CORS headers found

Cookies Headers

Set-Cookie

Cookies

set-cookie: swpext86386=f326efd5a763b44862dad16fe83c7cd1; expires=Sun, 10-May-2026 02:41:38 GMT; Max-Age=604800; path=/; HttpOnly
ab_test_29374=0; expires=Sat, 01-Aug-2026 02:41:38 GMT; Max-Age=7776000; path=/; secure; HttpOnly; SameSite=Lax
__cf_bm=KJjxgq5_wlBVLQNkDdy2Sp5bf.vsMWiJmJyQTu_zFFU-1777776097.857986-1.0.1.1-9CzFgj2rrFnB4jFd6mPk9OZYpu4Fsb9gXFehM8WlpBjVczPeqNt5iTDB7IAoYyOteySST12d2q6nvvDIhrH8sxsLPyWWRSqGFN5c1nosGuLDyHpz7zJ7Q7ZpaFGMxK3.; HttpOnly; Secure; Path=/; Domain=www.thinkific.com; Expires=Sun, 03 May 2026 03:11:38 GMT

Other Headers

Cf-Cache-Status

Other

DYNAMIC

Cf-Ray

Other

9f5be8639d841770-IAD

Date

Other

Sun, 03 May 2026 02:41:38 GMT

Ki-Cache-Type

Other

None

Ki-Cf-Cache-Status

Other

BYPASS

Ki-Edge

Other

v=27.1.1;mv=99.9.9

Ki-Edge-O2o

Other

yes

Ki-Origin

Other

g1p

Link

Other

URL

https://www.thinkific.com/

rel=shortlink

Nel

Other

Report-To Group cf-nel max-age: 1w

success: 1.0%

Report-To

Other

Group cf-nel max-age: 1w

Endpoint 1 https://a.nel.cloudflare.com/report/v4?s=7pSeFN3UdB56x6BLgCOzLkaJ8mltoFkvmf6O9pQi%2FQ5%2F2TL%2FAkloO3UOtMIaXuDqpJUjwdiBND8sWlB0uAtXn8%2Fea7OAxsMZ%2B58m%2F6RwTNc7jImJabuPAqf00mxdl9vtjceR

Server-Timing

Other

cfCacheStatus;desc="DYNAMIC", cfEdge;dur=13,cfOrigin;dur=365

Speculation-Rules

Other

"/cdn-cgi/speculation"

X-Edge-Location-Klb

Other

1

X-Geoip-Caching

Other

US

X-Kinsta-Cache

Other

BYPASS

cf-cache-status: DYNAMIC
cf-ray: 9f5be8639d841770-IAD
date: Sun, 03 May 2026 02:41:38 GMT
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=27.1.1;mv=99.9.9
ki-edge-o2o: yes
ki-origin: g1p
link: <https://www.thinkific.com/>; rel=shortlink
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7pSeFN3UdB56x6BLgCOzLkaJ8mltoFkvmf6O9pQi%2FQ5%2F2TL%2FAkloO3UOtMIaXuDqpJUjwdiBND8sWlB0uAtXn8%2Fea7OAxsMZ%2B58m%2F6RwTNc7jImJabuPAqf00mxdl9vtjceR"}],"group":"cf-nel","max_age":604800}
server-timing: cfCacheStatus;desc="DYNAMIC", cfEdge;dur=13,cfOrigin;dur=365
speculation-rules: "/cdn-cgi/speculation"
x-edge-location-klb: 1
x-geoip-caching: US
x-kinsta-cache: BYPASS

Recommendations

Enable compression (gzip/brotli) to improve performance

Add Cache-Control header to optimize caching