Cross-Origin-Opener-Policy

HTTP response header

Header usage statistics

Cross-Origin-Opener-Policy response header information and usage statistics.

Websites using header Cross-Origin-Opener-Policy 78,506
Percentage of websites that use Cross-Origin-Opener-Policy header <0.1%
Total discovered header values 116
Header uses directives No
Header values are unique or random No
Most popular in the country South Korea

Distribution by websites popularity

Cross-Origin-Opener-Policy detection in the top websites by popularity

Top 10k sites 198 websites
Top 100k sites 653 websites
Top 1m sites 1,501 websites

Websites utilizing Cross-Origin-Opener-Policy

List of websites that use Cross-Origin-Opener-Policy header

Domain Country Rank Contacts
www.facebook.com United States of America 2
twitter.com United States of America 7
www.instagram.com Ireland 9
www.messenger.com Ireland 12
www.workplace.com Ireland 15
m.facebook.com Ireland 16
See full domain list
Flat price per the report, subscription is not required.

Geographical Distribution

Header usage distribution by websites across the globe.






Common header values

List of top common Cross-Origin-Opener-Policy header values

Header value Value prevalence
same-origin-allow-popups 67.40%
unsafe-none 13.70%
same-origin 9.17%
unsafe-none; report-to="GeoMerchantPrestoSiteUi" 7.18%
unsafe-none; report-to="DurableDeepLinkUi" 1.17%
same-origin; report-to="default" 0.21%
same-origin-allow-popups; report-to="TranslateWebserverUi" 0.12%
same-origin-allow-popups; report-to="DotsSplashUi" 0.11%
same-origin; report-to='default' 0.10%
same-site; report-to="default"; 0.10%
same-origin-allow-popups; report-to="ShoppingUi" 0.09%
same-origin-allow-popups; report-to="default" 0.07%
same-origin-allow-popups; report-to="AXrpQddO_gk1oxEU761EjNMVDbZgcy5EBkfiucD0agZtrAaHOxWfunhPC1bfzKpahoU3sw" 0.06%
same-origin-allow-popups; report-to="AZM8irbJaGR4Mshr-kkQcXXoH1aWmyIDlfTRl31OkyjqsIuAVljmh5GCyfs-boKikxsgCQ" 0.04%
same-origin; report-to=coop-endpoint 0.03%
cross-origin 0.03%
(same-origin|same-origin-allow-popups|unsafe-none); report-to="default" 0.03%
same-origin; 0.03%
same-origin-allow-popups; 0.02%
same-origin; report-to="DriveWildcardRedirectHttp" 0.02%