Now Stable

"New on the Web": For a given set of browsers, what APIs became stable and when, ordered reverse chronologically.

It's a great source of information for posts like this

Example Comparisons
Browsers
Features

Stable APIs

Below is a list of features that are in Edge and Safari, ordered reverse chronologically by when they became stable (i.e, available in the last browser).

2026/2

API First Browser Date Last Browser Date Days Notes
http.headers.Accept-Encoding.zstd πŸ“‹Edge3/22/2024 Safari2/11/2026691
Safari: Before macOS 26.3 Tahoe, this header value is not sent.
http.headers.Content-Encoding.zstd πŸ“‹Edge3/22/2024 Safari2/11/2026691
Safari: Before macOS 26.3 Tahoe, Safari cannot decode Zstandard responses.

2025/12

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.script-src.inline-speculation-rules Edge2/9/2023 Safari12/12/20251037
http.headers.Content-Security-Policy.style-src-elem πŸ“‹Edge1/15/2020 Safari12/12/20252158
Safari: The style-src-elem directive was parsed, but had no effect. See bug 276931.Safari on iOS: The style-src-elem directive was parsed, but had no effect. See bug 276931.WebView on iOS: The style-src-elem directive was parsed, but had no effect. See bug 276931.
http.headers.Sec-Purpose.speculationrules Edge2/9/2023 Safari12/12/20251037
http.headers.Sec-Speculation-Tags πŸ“‹Edge5/1/2025 Safari12/12/2025225
http.headers.Set-Cookie.Partitioned πŸ“‹Edge6/2/2023 Safari12/12/2025924
http.headers.Speculation-Rules πŸ“‹Edge1/25/2024 Safari12/12/2025687

2025/9

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.require-trusted-types-for πŸ“‹Edge5/21/2020 Safari9/15/20251943
http.headers.Content-Security-Policy.trusted-types πŸ“‹Edge5/21/2020 Safari9/15/20251943

2025/3

API First Browser Date Last Browser Date Days Notes
http.headers.Cross-Origin-Opener-Policy.noopener-allow-popups πŸ“‹Edge11/14/2024 Safari3/31/2025137

2023/12

API First Browser Date Last Browser Date Days Notes
http.headers.Link.fetchpriority πŸ“‹Edge6/23/2022 Safari12/11/2023536

2023/9

API First Browser Date Last Browser Date Days Notes
http.headers.Alt-Svc πŸ“‹Edge1/15/2020 Safari9/18/20231342
Firefox: Only supports draft-04Firefox for Android: Only supports draft-04
http.headers.Clear-Site-Data πŸ“‹Edge1/15/2020 Safari9/18/20231342
http.headers.Clear-Site-Data.cache πŸ“‹Edge1/15/2020 Safari9/18/20231342
Chrome: Setting this value may increase response duration (see bug 40233601.Chrome: Setting this value may prevent a page from fully load (see bug 41343050.Chrome Android: Setting this value may increase response duration (see bug 40233601.Chrome Android: Setting this value may prevent a page from fully load (see bug 41343050.Edge: Setting this value may increase response duration (see bug 40233601.Quest Browser: Setting this value may increase response duration (see bug 40233601.Opera: Setting this value may increase response duration (see bug 40233601.Opera: Setting this value may prevent a page from fully load (see bug 41343050.Opera Android: Setting this value may increase response duration (see bug 40233601.Opera Android: Setting this value may prevent a page from fully load (see bug 41343050.Samsung Internet: Setting this value may increase response duration (see bug 40233601.WebView Android: Setting this value may increase response duration (see bug 40233601.WebView Android: Setting this value may prevent a page from fully load (see bug 41343050.
http.headers.Clear-Site-Data.cookies πŸ“‹Edge1/15/2020 Safari9/18/20231342
http.headers.Clear-Site-Data.secure_context_required Edge1/15/2020 Safari9/18/20231342
http.headers.Clear-Site-Data.storage πŸ“‹Edge1/15/2020 Safari9/18/20231342
http.headers.Clear-Site-Data.wildcard πŸ“‹Edge9/15/2023 Safari9/18/20233
http.headers.Link πŸ“‹Edge6/23/2022 Safari9/18/2023452
http.status.103 πŸ“‹Edge6/23/2022 Safari9/18/2023452
Chrome: Supported in HTTP/2 and later only.Chrome Android: Supported in HTTP/2 and later only.Edge: Supported in HTTP/2 and later only.Quest Browser: Supported in HTTP/2 and later only.Opera: Supported in HTTP/2 and later only.Opera Android: Supported in HTTP/2 and later only.Safari: Supported in HTTP/2 and later only.Safari on iOS: Supported in HTTP/2 and later only.Samsung Internet: Supported in HTTP/2 and later only.WebView Android: Supported in HTTP/2 and later only.WebView on iOS: Supported in HTTP/2 and later only.
http.status.103.preconnect Edge6/23/2022 Safari9/18/2023452

2023/3

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.report-to πŸ“‹Edge1/15/2020 Safari3/27/20231167
http.headers.Reporting-Endpoints πŸ“‹Edge11/19/2021 Safari3/27/2023493
http.headers.Sec-Fetch-Dest πŸ“‹Edge2/7/2020 Safari3/27/20231144
http.headers.Sec-Fetch-Mode πŸ“‹Edge1/15/2020 Safari3/27/20231167
http.headers.Sec-Fetch-Site πŸ“‹Edge1/15/2020 Safari3/27/20231167
http.headers.Server-Timing πŸ“‹Edge1/15/2020 Safari3/27/20231167

2022/9

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.script-src.wasm-unsafe-eval Edge1/6/2022 Safari9/12/2022249
http.headers.Range.cors_safe Edge3/3/2022 Safari9/12/2022193

2022/7

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.script-src.external_scripts πŸ“‹Edge1/15/2020 Safari7/20/2022917

2022/5

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.worker-src πŸ“‹Edge1/15/2020 Safari5/16/2022852
Chrome: Chrome 59 and higher skips the deprecated child-src directive.Chrome Android: Chrome Android 59 and higher skips the deprecated child-src directive.Quest Browser: Quest Browser 5.0 and higher skips the deprecated child-src directive.Opera: Opera 46 and higher skips the deprecated child-src directive.Opera Android: Opera Android 43 and higher skips the deprecated child-src directive.WebView Android: WebView Android 59 and higher skips the deprecated child-src directive.

2022/3

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.report-sample Edge1/15/2020 Safari3/14/2022789
http.headers.Content-Security-Policy.script-src-attr πŸ“‹Edge1/15/2020 Safari3/14/2022789
http.headers.Content-Security-Policy.script-src-elem πŸ“‹Edge1/15/2020 Safari3/14/2022789
http.headers.Content-Security-Policy.strict-dynamic Edge1/15/2020 Safari3/14/2022789
http.headers.Content-Security-Policy.style-src-attr πŸ“‹Edge1/15/2020 Safari3/14/2022789
http.headers.Content-Security-Policy.unsafe-hashes Edge1/15/2020 Safari3/14/2022789
http.headers.Service-Worker-Navigation-Preload πŸ“‹Edge10/2/2018 Safari3/14/20221259

2021/12

API First Browser Date Last Browser Date Days Notes
http.headers.Cross-Origin-Embedder-Policy πŸ“‹Edge5/21/2020 Safari12/13/2021571
http.headers.Cross-Origin-Opener-Policy πŸ“‹Edge5/21/2020 Safari12/13/2021571

2021/9

API First Browser Date Last Browser Date Days Notes
http.headers.Referrer-Policy.default_strict-origin-when-cross-origin Edge8/27/2020 Safari9/20/2021389

2020/9

API First Browser Date Last Browser Date Days Notes
http.data-url.top_level_navigation_blocked Edge1/15/2020 Safari9/16/2020245
http.headers.Cache-Control.stale-while-revalidate πŸ“‹Edge1/15/2020 Safari9/16/2020245
http.headers.Referer.length_limit_4096B Edge1/15/2020 Safari9/16/2020245

2020/1

API First Browser Date Last Browser Date Days Notes
http.data-url.html_files Safari3/18/2008 Edge1/15/20204320
http.headers.Access-Control-Allow-Headers.wildcard Safari9/19/2019 Edge1/15/2020118
http.headers.Access-Control-Allow-Methods.wildcard Safari9/19/2019 Edge1/15/2020118
http.headers.Access-Control-Expose-Headers.wildcard Safari9/19/2019 Edge1/15/2020118
http.headers.Authorization.Digest πŸ“‹Safari6/23/2003 Edge1/15/20206050
http.headers.Authorization.Digest.md5 Safari6/23/2003 Edge1/15/20206050
http.headers.Authorization.NTLM Safari10/22/2013 Edge1/15/20202276
http.headers.Authorization.Negotiate πŸ“‹Safari10/22/2013 Edge1/15/20202276
http.headers.Content-Length.cors_response_safelist Safari3/25/2019 Edge1/15/2020296
http.headers.Content-Security-Policy.base-uri πŸ“‹Safari9/20/2016 Edge1/15/20201212
http.headers.Content-Security-Policy.block-all-mixed-content Safari9/20/2016 Edge1/15/20201212
Chrome: Will be removed, see bug 40260100.Chrome Android: Will be removed, see bug 40260100.Edge: Will be removed, see bug 40260100.Quest Browser: Will be removed, see bug 40260100.Opera: Will be removed, see bug 40260100.Opera Android: Will be removed, see bug 40260100.Samsung Internet: Will be removed, see bug 40260100.WebView Android: Will be removed, see bug 40260100.
http.headers.Content-Security-Policy.form-action.blocks_redirects Safari4/12/2018 Edge1/15/2020643
http.headers.Content-Security-Policy.manifest-src πŸ“‹Safari9/19/2017 Edge1/15/2020848
http.headers.Content-Security-Policy.worker_support Safari9/20/2016 Edge1/15/20201212
http.headers.Cross-Origin-Resource-Policy πŸ“‹Safari9/17/2018 Edge1/15/2020485
Chrome: Until version 75, downloads for files with this header would fail in Chrome. See bug 41452948.Chrome: From version 80 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 86, partial PDF loading is disabled.Chrome Android: Until version 75, downloads for files with this header would fail in Chrome Android. See bug 41452948.Chrome Android: From version 80 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 86, partial PDF loading is disabled.Quest Browser: Until version 7.0, downloads for files with this header would fail in Quest Browser. See bug 41452948.Quest Browser: From version 9.0 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 12.0, partial PDF loading is disabled.Opera: Until version 62, downloads for files with this header would fail in Opera. See bug 41452948.Opera: From version 67 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 72, partial PDF loading is disabled.Opera Android: Until version 54, downloads for files with this header would fail in Opera Android. See bug 41452948.Opera Android: From version 57 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 61, partial PDF loading is disabled.WebView Android: Until version 75, downloads for files with this header would fail in WebView Android. See bug 41452948.WebView Android: From version 80 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 86, partial PDF loading is disabled.
http.headers.Origin πŸ“‹Safari6/23/2003 Edge1/15/20206050
Edge: Not sent with POST requestsFirefox: Not sent with POST requests, see bug 446344.Firefox for Android: Not sent with POST requests, see bug 446344.
http.headers.Referrer-Policy πŸ“‹Safari4/12/2018 Edge1/15/2020643
http.headers.Referrer-Policy.same-origin Safari4/12/2018 Edge1/15/2020643
http.headers.Referrer-Policy.strict-origin Safari4/12/2018 Edge1/15/2020643
http.headers.Referrer-Policy.strict-origin-when-cross-origin Safari4/12/2018 Edge1/15/2020643
http.headers.Set-Cookie.host_secure_prefixes Safari9/19/2019 Edge1/15/2020118
http.headers.SourceMap πŸ“‹Safari10/22/2013 Edge1/15/20202276
Chrome: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Chrome Android: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Edge: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Quest Browser: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Opera: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Opera Android: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Samsung Internet: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.WebView Android: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.
http.headers.Timing-Allow-Origin πŸ“‹Safari9/19/2017 Edge1/15/2020848
http.headers.WWW-Authenticate.NTLM Safari10/22/2013 Edge1/15/20202276
http.headers.WWW-Authenticate.Negotiate πŸ“‹Safari10/22/2013 Edge1/15/20202276
http.mixed-content πŸ“‹Safari3/21/2016 Edge1/15/20201395
http.mixed-content.blockable_mixed_content πŸ“‹Safari3/21/2016 Edge1/15/20201395
Chrome: From version 79 blocks iframes, scripts, and stylesheets.Chrome Android: From version 79 blocks iframes, scripts, and stylesheets.Edge: From version 79 blocks iframes, scripts, and stylesheets.Quest Browser: From version 8.0 blocks iframes, scripts, and stylesheets.Opera: From version 66 blocks iframes, scripts, and stylesheets.Opera Android: From version 57 blocks iframes, scripts, and stylesheets.Samsung Internet: From version 12.0 blocks iframes, scripts, and stylesheets.WebView Android: From version 79 blocks iframes, scripts, and stylesheets.

2019/9

API First Browser Date Last Browser Date Days Notes
http.headers.Set-Cookie.SameSite πŸ“‹Edge10/17/2017 Safari9/19/2019702
Safari: Safari 13 on macOS 10.14 (Mojave), treats SameSite=None and invalid values as Strict. This is fixed in version 10.15 (Catalina) and later.Safari: Treats SameSite=None and invalid values as Strict in macOS before 10.15 Catalina. See bug 198181.Safari on iOS: Treats SameSite=None and invalid values as Strict in iOS before 13. See bug 198181.WebView on iOS: Treats SameSite=None and invalid values as Strict in iOS before 13. See bug 198181.
http.headers.Set-Cookie.SameSite.None Edge10/17/2017 Safari9/19/2019702
Chrome: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Chrome Android: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Quest Browser: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Opera: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Opera Android: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Safari: Not supported before macOS version 10.15 (Catalina).Samsung Internet: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.WebView Android: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.

2018/10

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.meta-element-support Safari10/22/2013 Edge10/2/20181806

2018/9

API First Browser Date Last Browser Date Days Notes
http.headers.Set-Cookie.SameSite.Lax Edge10/17/2017 Safari9/17/2018335
http.headers.Set-Cookie.SameSite.Strict Edge10/17/2017 Safari9/17/2018335

2018/4

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.upgrade-insecure-requests πŸ“‹Safari3/27/2017 Edge4/30/2018399
http.headers.Upgrade-Insecure-Requests πŸ“‹Safari3/27/2017 Edge4/30/2018399
http.headers.Service-Worker πŸ“‹Edge10/17/2017 Safari4/12/2018177
http.headers.Service-Worker-Allowed πŸ“‹Edge10/17/2017 Safari4/12/2018177

2017/9

API First Browser Date Last Browser Date Days Notes
http.headers.Accept-Encoding.br πŸ“‹Edge4/5/2017 Safari9/19/2017167
Safari: Unsupported before macOS 10.13 High Sierra.
http.headers.Content-Encoding.br πŸ“‹Edge4/5/2017 Safari9/19/2017167
Safari: Unsupported before macOS 10.13 High Sierra.
http.headers.X-Content-Type-Options πŸ“‹Edge7/29/2015 Safari9/19/2017783
Chrome: Not supported for stylesheets.Chrome Android: Not supported for stylesheets.Opera: Not supported for stylesheets.Opera Android: Not supported for stylesheets.Samsung Internet: Not supported for stylesheets.WebView Android: Not supported for stylesheets.

2017/4

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.child-src πŸ“‹Safari9/20/2016 Edge4/5/2017197
http.headers.Content-Security-Policy.form-action πŸ“‹Safari9/20/2016 Edge4/5/2017197
http.headers.Content-Security-Policy.frame-ancestors πŸ“‹Safari9/20/2016 Edge4/5/2017197
Firefox: Before Firefox 58, frame-ancestors is ignored in Content-Security-Policy-Report-Only.Firefox for Android: Before Firefox for Android 58, frame-ancestors is ignored in Content-Security-Policy-Report-Only.

2016/8

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy πŸ“‹Safari10/22/2013 Edge8/2/20161015
Internet Explorer: Only supporting 'sandbox' directive.
http.headers.Content-Security-Policy.connect-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
Firefox: Before Firefox 50, ping attributes of <a> elements weren't covered by connect-src.
http.headers.Content-Security-Policy.default-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.font-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.frame-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.img-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.media-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.object-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.report-uri πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.sandbox πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.script-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy.style-src πŸ“‹Safari10/22/2013 Edge8/2/20161015
http.headers.Content-Security-Policy-Report-Only πŸ“‹Safari10/22/2013 Edge8/2/20161015

2015/7

API First Browser Date Last Browser Date Days Notes
http.data-url πŸ“‹Safari3/18/2008 Edge7/29/20152689
Edge: Before Edge 79, the maximum size supported is 4GB.Internet Explorer: Since Internet Explorer 9, the maximum size supported is 4GB.Internet Explorer: In Internet Explorer 8, the maximum size supported is 32kB.
http.data-url.css_files Safari3/18/2008 Edge7/29/20152689
http.data-url.js_files Safari3/18/2008 Edge7/29/20152689
http.headers.Accept πŸ“‹Safari6/23/2003 Edge7/29/20154419
Firefox: In Firefox 66, the default Accept header value changed to */*.Firefox for Android: In Firefox for Android 66, the default Accept header value changed to */*.
http.headers.Accept-Encoding πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Accept-Language πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Accept-Ranges πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Access-Control-Allow-Credentials πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Allow-Headers πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Allow-Methods πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Allow-Origin πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Expose-Headers πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Max-Age πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Request-Headers πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Access-Control-Request-Method πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.Age πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Authorization πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Authorization.Basic πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Cache-Control πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Connection πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Content-Disposition πŸ“‹Safari6/23/2003 Edge7/29/20154419
Chrome: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Chrome Android: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Firefox: From version 82, if an <a> element's download attribute is set (for a same-origin URL) then the inline directive is ignored. Earlier versions did not match the specification and respected the header directive over the attribute. See bug 1658877.Firefox for Android: From version 82, if an <a> element's download attribute is set (for a same-origin URL) then the inline directive is ignored. Earlier versions did not match the specification and respected the header directive over the attribute. See bug 1658877.Quest Browser: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Opera: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Opera Android: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Safari: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 18384.Safari on iOS: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 18384.Samsung Internet: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.WebView Android: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.WebView on iOS: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 18384.
http.headers.Content-Encoding πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Content-Language πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Content-Length πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Content-Location πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Content-Range πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Content-Type πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Cookie πŸ“‹Safari6/23/2003 Edge7/29/20154419
Safari: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.Safari on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.WebView on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.
http.headers.Date πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.ETag πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Expires πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.From πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Host πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.If-Match πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.If-Modified-Since πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.If-None-Match πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.If-Range πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.If-Unmodified-Since πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Keep-Alive πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Last-Modified πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Location πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Pragma πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Proxy-Authenticate πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Range πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Referer πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Refresh πŸ“‹Safari6/23/2003 Edge7/29/20154419
Firefox: From version 136 the HTTP Referer header is sent following a refresh that redirects to another page (if permitted)Firefox for Android: From version 136 the HTTP Referer header is sent following a refresh that redirects to another page (if permitted)
http.headers.Sec-WebSocket-Accept πŸ“‹Safari7/25/2012 Edge7/29/20151099
http.headers.Sec-WebSocket-Extensions πŸ“‹Safari7/25/2012 Edge7/29/20151099
http.headers.Sec-WebSocket-Key πŸ“‹Safari7/25/2012 Edge7/29/20151099
http.headers.Sec-WebSocket-Protocol πŸ“‹Safari7/25/2012 Edge7/29/20151099
http.headers.Sec-WebSocket-Version πŸ“‹Safari7/25/2012 Edge7/29/20151099
http.headers.Server πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Set-Cookie πŸ“‹Safari6/23/2003 Edge7/29/20154419
Safari: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.Safari on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.WebView on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.
http.headers.Set-Cookie.HttpOnly Safari6/7/2010 Edge7/29/20151878
http.headers.Set-Cookie.Max-Age Safari6/23/2003 Edge7/29/20154419
http.headers.Strict-Transport-Security πŸ“‹Safari10/22/2013 Edge7/29/2015645
http.headers.TE πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Transfer-Encoding πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Upgrade πŸ“‹Safari6/7/2010 Edge7/29/20151878
http.headers.User-Agent πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Vary πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.Via πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.WWW-Authenticate πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.WWW-Authenticate.Basic πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.WWW-Authenticate.Digest πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.WWW-Authenticate.Digest.md5 Safari6/23/2003 Edge7/29/20154419
http.headers.Warning πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.headers.X-Frame-Options πŸ“‹Safari6/8/2009 Edge7/29/20152242
http.headers.X-Frame-Options.SAMEORIGIN Safari6/8/2009 Edge7/29/20152242
Chrome: Starting in Chrome 61, this applies to all of a frame's ancestors.Chrome Android: Starting in Chrome Android 61, this applies to all of a frame's ancestors.Firefox: Starting in Firefox 59, this applies to all of a frame's ancestors.Firefox for Android: Starting in Firefox for Android 59, this applies to all of a frame's ancestors.Quest Browser: Starting in Quest Browser 5.0, this applies to all of a frame's ancestors.Opera: Starting in Opera 48, this applies to all of a frame's ancestors.Opera Android: Starting in Opera Android 45, this applies to all of a frame's ancestors.Samsung Internet: Starting in Samsung Internet 8.0, this applies to all of a frame's ancestors.WebView Android: Starting in WebView Android 61, this applies to all of a frame's ancestors.
http.methods.CONNECT πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.methods.DELETE πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.methods.GET πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.methods.HEAD πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.methods.OPTIONS πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.methods.POST πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.methods.PUT πŸ“‹Safari6/23/2003 Edge7/29/20154419
http.status.308 πŸ“‹Safari10/22/2013 Edge7/29/2015645
Internet Explorer: Does not work below Windows 10.