Cross-Origin-Resource-Policy

HTTP response header

Header usage statistics

Cross-Origin-Resource-Policy response header information and usage statistics.
Websites using header Cross-Origin-Resource-Policy242,914
Percentage of websites that use Cross-Origin-Resource-Policy header0.30%
Total discovered header values119
Header uses directivesYes
Header values are unique or randomNo
Most popular in the country United States

Cross-Origin-Resource-Policy directives (3 total)

  • cross-origin
  • same-origin
  • same-site

Cross-Origin-Resource-Policy Directives

Cross-Origin-Resource-Policy directives value information and usage statistics
DirectiveShareWebsites countUnique Values
same-origin35.95%87,3171
cross-origin35.36%85,9031
same-site28.43%69,0691

Websites utilizing Cross-Origin-Resource-Policy

List of websites that use Cross-Origin-Resource-Policy header
DomainCountryRankContacts
www.youtube.com United States6
ajax.googleapis.com United States13
fonts.gstatic.com United States18
maps.googleapis.com United States22
plus.google.com United States25
maxcdn.bootstrapcdn.com United States26
See full domain list

Common header values

List of top common Cross-Origin-Resource-Policy header values
Header valueValue prevalence
same-origin35.43%
cross-origin35.25%
same-site28.38%
same-origin;0.42%
(same-site|same-origin|cross-origin)0.11%
SAMEORIGIN0.06%
cross-origin;0.04%
same-site | same-origin | cross-origin0.03%
unsafe-none0.03%
*0.02%
cross-site0.02%
same-site | same-origin0.01%
: same-origin0.01%
same-origin https://crew-mgr.com/ https://*.crew-mgr.com/0.01%
same-site;0.01%
same-origin; report-to="default"0.01%
same-site; report-to="default"0.01%
cross-origin, cross-origin0.01%
“same-origin”0.01%
Same0.01%