X-Permitted-Cross-Domain-Policies

HTTP response header

The X-Permitted-Cross-Domain-Policies header tells clients like Flash and Acrobat what cross-domain policies they can use. If you don't want them to load data from your domain set the header's value to none

Header usage statistics

X-Permitted-Cross-Domain-Policies response header information and usage statistics.

Websites using header X-Permitted-Cross-Domain-Policies1,801,368
Percentage of websites that use X-Permitted-Cross-Domain-Policies header1.81%
Total discovered header values104
Header uses directivesNo
Header values are unique or randomNo
Most popular in the country US

X-Permitted-Cross-Domain-Policies Directives

X-Permitted-Cross-Domain-Policies directives value information and usage statistics

DirectiveShareWebsites countUnique Values

Distribution by websites popularity

X-Permitted-Cross-Domain-Policies detection in the top websites by popularity

Top 10k sites379 websites
Top 100k sites2,609 websites
Top 1m sites27,248 websites

Websites utilizing X-Permitted-Cross-Domain-Policies

List of websites that use X-Permitted-Cross-Domain-Policies header

See full domain list
Flat price per the report, subscription is not required.

Geographical Distribution

Header usage distribution by websites across the globe.






Common header values

List of top common X-Permitted-Cross-Domain-Policies header values

Header valueValue prevalence
none96.42%
master-only2.86%
value0.46%
all0.08%
"master-only";0.04%
'master-only';0.02%
none;0.02%
by-content-type0.02%
self0.01%
: none0.01%
max-age=31536000; includeSubDomains0.01%
*0.01%
master-only;0.00%
"none"0.00%
: master-only0.00%
“master-only”0.00%
 "master-only"0.00%
nosniff0.00%
'none'0.00%
“none”0.00%