Cloudflare Headers Test


  /*
    Access-Control-Allow-Origin: *
    Vary: Origin
    Access-Control-Allow-Methods: GET, HEAD, OPTIONS
    Access-Control-Allow-Headers: Content-Type, Authorization, Content-Length, X-Requested-With
    Cross-Origin-Resource-Policy: same-origin
    Cross-Origin-Opener-Policy: same-origin
    Cross-Origin-Embedder-Policy: require-corp;
    Strict-Transport-Security: max-age=63072000;
    X-Frame-Options: DENY
    X-Content-Type-Options: nosniff
    Referrer-Policy: no-referrer

  /
    ! Cross-Origin-Opener-Policy
    ! Referrer-Policy
    Cross-Origin-Opener-Policy: same-origin-allow-popups
    Referrer-Policy: strict-origin-when-cross-origin
    Content-Security-Policy: default-src 'none'; base-uri 'self';
    Cache-Control: no-cache