Access-Control-Expose-Headers

HTTP response header

The Access-Control-Expose-Headers response header indicates which headers can be exposed as part of the response by listing their names

Header usage statistics

Access-Control-Expose-Headers response header information and usage statistics.

Websites using header Access-Control-Expose-Headers 161,703
Percentage of websites that use Access-Control-Expose-Headers header 0.16%
Total discovered header values 3,131
Header uses directives Yes
Header values are unique or random No
Most popular in the country United States of America

Access-Control-Expose-Headers Directives (24 total)

  • *
  • api-version
  • cache-control
  • content-length
  • content-range
  • content-type
  • date
  • dnt
  • if-modified-since
  • keep-alive
  • location
  • range
  • request-context
  • transfer-encoding
  • user-agent
  • x-cdn-diag
  • x-csrf-token
  • x-customheader
  • x-fb-cec-video-limit
  • x-frame-options
  • x-frontend
  • x-proxy-cache
  • x-request-id
  • x-requested-with

Access-Control-Expose-Headers Directives

Access-Control-Expose-Headers directives value information and usage statistics

Directive Share Websites count Unique Values
request-context 34.02% 55,011 1
content-length 17.49% 28,280 1
content-range 11.59% 18,737 1
content-type 9.08% 14,676 1
x-frontend 3.77% 6,094 1
cache-control 3.34% 5,403 1
date 3.22% 5,200 1
location 2.87% 4,645 1
range 2.60% 4,211 1
* 2.43% 3,930 1
x-requested-with 2.30% 3,726 1
x-request-id 1.96% 3,164 1
if-modified-since 1.55% 2,511 1
user-agent 1.49% 2,413 1
keep-alive 1.47% 2,371 1
transfer-encoding 1.46% 2,358 1
dnt 1.43% 2,313 1
x-customheader 1.29% 2,087 1
x-frame-options 0.90% 1,457 1
api-version 0.80% 1,292 1
x-cdn-diag 0.77% 1,247 1
x-csrf-token 0.41% 656 1
x-fb-cec-video-limit 0.13% 208 1
x-proxy-cache 0.12% 197 1

Distribution by websites popularity

Access-Control-Expose-Headers detection in the top websites by popularity

Top 10k sites 265 websites
Top 100k sites 1,624 websites
Top 1m sites 8,580 websites

Websites utilizing Access-Control-Expose-Headers

List of websites that use Access-Control-Expose-Headers header

Domain Country Rank Contacts
facebook.com United States of America 2
instagram.com Ireland 9
www.instagram.com Ireland 9
cdn.jsdelivr.net United States of America 42
schema.org United States of America 64
vk.com Russian Federation 74
See full domain list
Flat price per the report, subscription is not required.

Geographical Distribution

Header usage distribution by websites across the globe.






Common header values

List of top common Access-Control-Expose-Headers header values

Header value Value prevalence
Request-Context 33.99%
X-Log, X-Reqid 12.40%
Content-Length,Content-Range 6.21%
AMP-Access-Control-Allow-Source-Origin 4.03%
X-Frontend 3.77%
* 2.36%
Content-Length 1.68%
Content-Type,Authorization,sw-context-token,sw-access-key,sw-language-id,sw-version-id,sw-inheritance,fail-on-error,indexing-behavior,single-operation,sw-include-seo-urls 1.32%
Location, X-Request-Id 1.26%
Content-Type 1.05%
Date, Server, Content-Type, Content-Length 0.92%
x-ms-request-id,Content-Length,Date,Transfer-Encoding 0.91%
X-Backend-Timestamp, Etag, Last-Modified, X-Object-Manifest, X-Timestamp 0.79%
x-auth-token 0.77%
API-Version,X-FRAME-OPTIONS,Content-Security-Policy 0.77%
x-cdn-diag 0.77%
origin 0.75%
DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range 0.73%
Authorization 0.73%
Cache-Control, Content-Language, Content-Type, Expires, Last-Modified, Pragma, Etag, X-Timestamp, X-Trans-Id, X-Openstack-Request-Id, Content-Length, Accept-Ranges 0.66%