📡 HTTP Header Viewer

⚠ Important — Browser CORS Limitation: Due to browser security policies (CORS), only a limited set of response headers are exposed to JavaScript when fetching cross-origin URLs. These "CORS-safe" headers include: Cache-Control, Content-Language, Content-Length, Content-Type, Expires, Last-Modified, and Pragma. The remote server must send an Access-Control-Expose-Headers header to reveal additional headers. For a full header view, use your browser's DevTools Network tab or a server-side tool like curl.