const classafBedSheet::HttpResponseHeaders

Tells all caching mechanisms from server to client whether they may cache this object. It is measured in seconds.

Example: Cache-Control: max-age=3600

Usually used to direct the client to display a save as dialog.

Example: Content-Disposition: Attachment; filename=example.html

@see http://tools.ietf.org/html/rfc6266

The type of encoding used on the data.

Example: Content-Encoding: gzip

The length of the response body in octets (8-bit bytes).

Example: Content-Length: 348

The MIME type of this content.

Example: Content-Type: text/html; charset=utf-8

An identifier for a specific version of a resource, often a message digest.

Example: ETag: "737060cd8c284d8af7ad3082f209582d"

Gives the date/time after which the response is considered stale.

Example: Expires: Thu, 01 Dec 1994 16:00:00 GMT

The last modified date for the requested object, in RFC 2822 format.

Example: Last-Modified: Tue, 15 Nov 1994 12:45:26 +0000

Used in redirection, or when a new resource has been created.

Example: Location: http://www.w3.org/pub/WWW/People.html

Implementation-specific headers.

Example: Pragma: no-cache

Tells downstream proxies how to match future request headers to decide whether the cached response can be used rather than requesting a fresh one from the origin server.

Example: Vary: Accept-Encoding

@see Accept-Encoding, It’s Vary important

Clickjacking protection, set to:

• deny - no rendering within a frame,
• sameorigin - no rendering if origin mismatch

Example: X-Frame-Options: deny

Cross-site scripting (XSS) filter.

Example: X-XSS-Protection: 1; mode=block