Last updated

Response Headers

Headers that will be sent back to you:

Header NameValueRequiredComments
Content-Typeapplication/json;charset=utf-8YesAll responses will specify application/json as the Content-Type.
Datee.g. Fri, 19 April 2024 05:00:00 GMTYesThe response timestamp.
Content-LengthXXXYesThe length of the response.
X-CSRF-TokenXXXYesCross-site request forgery token.
X-CSRF-HeaderX-CSRF-TOKENYesThe name of the header containing the Cross-site request forgery token.
X-Powered-ByCollective2Yes
X-Content-Type-OptionsnosniffYesSee documentation here
Strict-Transport-Securitymax-age=7776000Yes
Content-Security-Policyframe-ancestors 'self' *Yes
X-Limit-Typee.g. S, M or HYesThe type of rate limit. Can be “S” (per 10 seconds), “M” (per 60 minutes), or “H” (per 24 hours).
X-Limit-Limite.g. 100YesThe number of allowed requests in the current period.
X-Limit-Remaininge.g. 99YesThe number of remaining requests in the current period.
X-Limit-Resete.g. 10NoThe number of seconds left in the current period.
Cache-Controlmax-age=xxxNoHow long cached response is considered valid.
Content-Encodinge.g. br or gzipNoThe response compression algorithm.
X-Original-Content-LengthXXXNoThe length of the compressed response.
VaryAccept-EncodingNoPresent if response was compressed.
Last-Modifiede.g. Fri, 19 April 2024 05:00:00 GMTNoRFC1123 pattern. UTC datetime when content was last modified.