针对最新版的 Firefox/Chrome ,不考虑 HTTP 请求头( HTTP Request Header ):
- Allow
- Accept-Ranges
- Access-Control-Allow-Credentials
- Access-Control-Allow-Headers
- Access-Control-Allow-Methods
- Access-Control-Allow-Origin
- Access-Control-Expose-Headers
- Access-Control-Max-Age
- Age
- Cache-Control
- Connection
- Content-Disposition
- Content-Security-Policy
- Content-Security-Policy-Report-Only
- Date
- ETag
- Expires
- Keep-Alive
- Last-Modified
- Location
- Pragma
- Proxy-Authenticate
- Public-Key-Pins
- Public-Key-Pins-Report-Only
- Referrer-Policy
- Retry-After
- Sec-
- Server
- Set-Cookie
- Set-Cookie2
- Strict-Transport-Security
- Tk
- Trailer
- Transfer-Encoding
- Upgrade
- Vary
- Via
- Warning
- WWW-Authenticate
- X-Content-Type-Options
- X-DNS-Prefetch-Control
- X-Frame-Options
- X-XSS-Protection
Select Language