Access-Control-Allow-Credentials

HTTP response header

Specifying which web sites can participate in cross-origin resource sharing (Indicates whether or not the response to the request can be exposed when the credentials flag is true)

Header usage statistics

Access-Control-Allow-Credentials response header information and usage statistics.

Websites using header Access-Control-Allow-Credentials354,584
Percentage of websites that use Access-Control-Allow-Credentials header0.36%
Total discovered header values86
Header uses directivesYes
Header values are unique or randomNo
Most popular in the country US

Access-Control-Allow-Credentials directives (2 total)

  • false
  • true

Access-Control-Allow-Credentials Directives

Access-Control-Allow-Credentials directives value information and usage statistics

DirectiveShareWebsites countUnique Values
true83.33%295,4881
false16.25%57,6211

Distribution by websites popularity

Access-Control-Allow-Credentials detection in the top websites by popularity

Top 10k sites239 websites
Top 100k sites1,826 websites
Top 1m sites13,458 websites

Websites utilizing Access-Control-Allow-Credentials

List of websites that use Access-Control-Allow-Credentials header

DomainCountryRankContacts
schema.org US64
www.nytimes.com US77
get.adobe.com US204
forbes.com US291
www.forbes.com US291
js.hs-scripts.com US319
See full domain list
Flat price per the report, subscription is not required.

Geographical Distribution

Header usage distribution by websites across the globe.






Common header values

List of top common Access-Control-Allow-Credentials header values

Header valueValue prevalence
true83.32%
false16.25%
*0.25%
: true0.06%
10.04%
SAMEORIGIN0.01%
wefunder.honeycombcredit.com0.01%
yes0.01%
trueÆ’0.00%
Accept-Encoding0.00%
POST,GET0.00%
Origin0.00%
'true'0.00%
ture0.00%
true,0.00%
true, true0.00%
true, always0.00%
true;0.00%
true always0.00%
true>0.00%