Now Stable

"New on the Web": For a given set of browsers, what APIs became stable and when, ordered reverse chronologically.

It's a great source of information for posts like this

Example Comparisons
Browsers
Features

Stable APIs

Below is a list of features that are in Safari and Safari on iOS, ordered reverse chronologically by when they became stable (i.e, available in the last browser).

2026/2

API First Browser Date Last Browser Date Days Notes
http.headers.Accept-Encoding.zstd πŸ“‹Safari2/11/2026 Safari on iOS2/11/2026
Safari: Before macOS 26.3 Tahoe, this header value is not sent.
http.headers.Content-Encoding.zstd πŸ“‹Safari2/11/2026 Safari on iOS2/11/2026
Safari: Before macOS 26.3 Tahoe, Safari cannot decode Zstandard responses.

2025/12

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.script-src.inline-speculation-rules Safari12/12/2025 Safari on iOS12/12/2025
http.headers.Content-Security-Policy.style-src-elem πŸ“‹Safari12/12/2025 Safari on iOS12/12/2025
Safari: The style-src-elem directive was parsed, but had no effect. See bug 276931.Safari on iOS: The style-src-elem directive was parsed, but had no effect. See bug 276931.WebView on iOS: The style-src-elem directive was parsed, but had no effect. See bug 276931.
http.headers.Sec-Purpose.speculationrules Safari12/12/2025 Safari on iOS12/12/2025
http.headers.Sec-Speculation-Tags πŸ“‹Safari12/12/2025 Safari on iOS12/12/2025
http.headers.Set-Cookie.Partitioned πŸ“‹Safari12/12/2025 Safari on iOS12/12/2025
http.headers.Speculation-Rules πŸ“‹Safari12/12/2025 Safari on iOS12/12/2025

2025/9

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.require-trusted-types-for πŸ“‹Safari9/15/2025 Safari on iOS9/15/2025
http.headers.Content-Security-Policy.script-src.trusted-types-eval πŸ“‹Safari9/15/2025 Safari on iOS9/15/2025
http.headers.Content-Security-Policy.trusted-types πŸ“‹Safari9/15/2025 Safari on iOS9/15/2025

2025/3

API First Browser Date Last Browser Date Days Notes
http.headers.Cross-Origin-Opener-Policy.noopener-allow-popups πŸ“‹Safari3/31/2025 Safari on iOS3/31/2025

2023/12

API First Browser Date Last Browser Date Days Notes
http.headers.Link.fetchpriority πŸ“‹Safari12/11/2023 Safari on iOS12/11/2023

2023/9

API First Browser Date Last Browser Date Days Notes
http.headers.Alt-Svc πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
Firefox: Only supports draft-04Firefox for Android: Only supports draft-04
http.headers.Clear-Site-Data πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
http.headers.Clear-Site-Data.cache πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
Chrome: Setting this value may increase response duration (see bug 40233601.Chrome: Setting this value may prevent a page from fully load (see bug 41343050.Chrome Android: Setting this value may increase response duration (see bug 40233601.Chrome Android: Setting this value may prevent a page from fully load (see bug 41343050.Edge: Setting this value may increase response duration (see bug 40233601.Quest Browser: Setting this value may increase response duration (see bug 40233601.Opera: Setting this value may increase response duration (see bug 40233601.Opera: Setting this value may prevent a page from fully load (see bug 41343050.Opera Android: Setting this value may increase response duration (see bug 40233601.Opera Android: Setting this value may prevent a page from fully load (see bug 41343050.Samsung Internet: Setting this value may increase response duration (see bug 40233601.WebView Android: Setting this value may increase response duration (see bug 40233601.WebView Android: Setting this value may prevent a page from fully load (see bug 41343050.
http.headers.Clear-Site-Data.cookies πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
http.headers.Clear-Site-Data.secure_context_required Safari9/18/2023 Safari on iOS9/18/2023
http.headers.Clear-Site-Data.storage πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
http.headers.Clear-Site-Data.wildcard πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
http.headers.Link πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
http.status.103 πŸ“‹Safari9/18/2023 Safari on iOS9/18/2023
Chrome: Supported in HTTP/2 and later only.Chrome Android: Supported in HTTP/2 and later only.Edge: Supported in HTTP/2 and later only.Quest Browser: Supported in HTTP/2 and later only.Opera: Supported in HTTP/2 and later only.Opera Android: Supported in HTTP/2 and later only.Safari: Supported in HTTP/2 and later only.Safari on iOS: Supported in HTTP/2 and later only.Samsung Internet: Supported in HTTP/2 and later only.WebView Android: Supported in HTTP/2 and later only.WebView on iOS: Supported in HTTP/2 and later only.
http.status.103.preconnect Safari9/18/2023 Safari on iOS9/18/2023

2023/3

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.report-to πŸ“‹Safari3/27/2023 Safari on iOS3/27/2023
http.headers.Reporting-Endpoints πŸ“‹Safari3/27/2023 Safari on iOS3/27/2023
http.headers.Sec-Fetch-Dest πŸ“‹Safari3/27/2023 Safari on iOS3/27/2023
http.headers.Sec-Fetch-Mode πŸ“‹Safari3/27/2023 Safari on iOS3/27/2023
http.headers.Sec-Fetch-Site πŸ“‹Safari3/27/2023 Safari on iOS3/27/2023
http.headers.Server-Timing πŸ“‹Safari3/27/2023 Safari on iOS3/27/2023

2023/1

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.prefetch-src Safari1/23/2023 Safari on iOS1/23/2023

2022/10

API First Browser Date Last Browser Date Days Notes
http.headers.Authorization.authorization_removed_cross_origin πŸ“‹Safari10/24/2022 Safari on iOS10/24/2022

2022/9

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.script-src.wasm-unsafe-eval Safari9/12/2022 Safari on iOS9/12/2022
http.headers.Range.cors_safe Safari9/12/2022 Safari on iOS9/12/2022

2022/7

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.script-src.external_scripts πŸ“‹Safari7/20/2022 Safari on iOS7/20/2022

2022/5

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.worker-src πŸ“‹Safari5/16/2022 Safari on iOS5/16/2022
Chrome: Chrome 59 and higher skips the deprecated child-src directive.Chrome Android: Chrome Android 59 and higher skips the deprecated child-src directive.Quest Browser: Quest Browser 5.0 and higher skips the deprecated child-src directive.Opera: Opera 46 and higher skips the deprecated child-src directive.Opera Android: Opera Android 43 and higher skips the deprecated child-src directive.WebView Android: WebView Android 59 and higher skips the deprecated child-src directive.

2022/3

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.report-sample Safari3/14/2022 Safari on iOS3/14/2022
http.headers.Content-Security-Policy.script-src-attr πŸ“‹Safari3/14/2022 Safari on iOS3/14/2022
http.headers.Content-Security-Policy.script-src-elem πŸ“‹Safari3/14/2022 Safari on iOS3/14/2022
http.headers.Content-Security-Policy.strict-dynamic Safari3/14/2022 Safari on iOS3/14/2022
http.headers.Content-Security-Policy.style-src-attr πŸ“‹Safari3/14/2022 Safari on iOS3/14/2022
http.headers.Content-Security-Policy.unsafe-hashes Safari3/14/2022 Safari on iOS3/14/2022
http.headers.Service-Worker-Navigation-Preload πŸ“‹Safari3/14/2022 Safari on iOS3/14/2022

2021/12

API First Browser Date Last Browser Date Days Notes
http.headers.Cross-Origin-Embedder-Policy πŸ“‹Safari12/13/2021 Safari on iOS12/13/2021
http.headers.Cross-Origin-Opener-Policy πŸ“‹Safari12/13/2021 Safari on iOS12/13/2021

2021/9

API First Browser Date Last Browser Date Days Notes
http.headers.Referrer-Policy.default_strict-origin-when-cross-origin Safari9/20/2021 Safari on iOS9/20/2021

2020/9

API First Browser Date Last Browser Date Days Notes
http.data-url.top_level_navigation_blocked Safari9/16/2020 Safari on iOS9/16/2020
http.headers.Cache-Control.stale-while-revalidate πŸ“‹Safari9/16/2020 Safari on iOS9/16/2020
http.headers.Referer.length_limit_4096B Safari9/16/2020 Safari on iOS9/16/2020

2019/9

API First Browser Date Last Browser Date Days Notes
http.headers.Access-Control-Allow-Headers.wildcard Safari9/19/2019 Safari on iOS9/19/2019
http.headers.Access-Control-Allow-Methods.wildcard Safari9/19/2019 Safari on iOS9/19/2019
http.headers.Access-Control-Expose-Headers.wildcard Safari9/19/2019 Safari on iOS9/19/2019
http.headers.Set-Cookie.SameSite πŸ“‹Safari9/19/2019 Safari on iOS9/19/2019
Safari: Safari 13 on macOS 10.14 (Mojave), treats SameSite=None and invalid values as Strict. This is fixed in version 10.15 (Catalina) and later.Safari: Treats SameSite=None and invalid values as Strict in macOS before 10.15 Catalina. See bug 198181.Safari on iOS: Treats SameSite=None and invalid values as Strict in iOS before 13. See bug 198181.WebView on iOS: Treats SameSite=None and invalid values as Strict in iOS before 13. See bug 198181.
http.headers.Set-Cookie.SameSite.None Safari9/19/2019 Safari on iOS9/19/2019
Chrome: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Chrome Android: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Quest Browser: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Opera: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Opera Android: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.Safari: Not supported before macOS version 10.15 (Catalina).Samsung Internet: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.WebView Android: Rejects cookies with SameSite=None. See SameSite=None: Known Incompatible Clients.
http.headers.Set-Cookie.host_secure_prefixes Safari9/19/2019 Safari on iOS9/19/2019

2019/3

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Length.cors_response_safelist Safari3/25/2019 Safari on iOS3/25/2019
http.headers.Set-Cookie.SameSite.Lax Safari9/17/2018 Safari on iOS3/25/2019189
http.headers.Set-Cookie.SameSite.Strict Safari9/17/2018 Safari on iOS3/25/2019189

2018/9

API First Browser Date Last Browser Date Days Notes
http.headers.Cross-Origin-Resource-Policy πŸ“‹Safari9/17/2018 Safari on iOS9/17/2018
Chrome: Until version 75, downloads for files with this header would fail in Chrome. See bug 41452948.Chrome: From version 80 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 86, partial PDF loading is disabled.Chrome Android: Until version 75, downloads for files with this header would fail in Chrome Android. See bug 41452948.Chrome Android: From version 80 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 86, partial PDF loading is disabled.Quest Browser: Until version 7.0, downloads for files with this header would fail in Quest Browser. See bug 41452948.Quest Browser: From version 9.0 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 12.0, partial PDF loading is disabled.Opera: Until version 62, downloads for files with this header would fail in Opera. See bug 41452948.Opera: From version 67 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 72, partial PDF loading is disabled.Opera Android: Until version 54, downloads for files with this header would fail in Opera Android. See bug 41452948.Opera Android: From version 57 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 61, partial PDF loading is disabled.WebView Android: Until version 75, downloads for files with this header would fail in WebView Android. See bug 41452948.WebView Android: From version 80 to 85, linearized PDFs served inline with this header fail to render properly. See bug 40127935. From version 86, partial PDF loading is disabled.
http.headers.Referrer-Policy πŸ“‹Safari4/12/2018 Safari on iOS9/17/2018158
http.headers.Referrer-Policy.same-origin Safari4/12/2018 Safari on iOS9/17/2018158
http.headers.Referrer-Policy.strict-origin Safari4/12/2018 Safari on iOS9/17/2018158
http.headers.Referrer-Policy.strict-origin-when-cross-origin Safari4/12/2018 Safari on iOS9/17/2018158

2018/4

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.form-action.blocks_redirects Safari on iOS3/29/2018 Safari4/12/201814
http.headers.Service-Worker πŸ“‹Safari on iOS3/29/2018 Safari4/12/201814
http.headers.Service-Worker-Allowed πŸ“‹Safari on iOS3/29/2018 Safari4/12/201814

2017/9

API First Browser Date Last Browser Date Days Notes
http.headers.Accept-Encoding.br πŸ“‹Safari9/19/2017 Safari on iOS9/19/2017
Safari: Unsupported before macOS 10.13 High Sierra.
http.headers.Cache-Control.immutable Safari9/19/2017 Safari on iOS9/19/2017
http.headers.Content-Encoding.br πŸ“‹Safari9/19/2017 Safari on iOS9/19/2017
Safari: Unsupported before macOS 10.13 High Sierra.
http.headers.Content-Security-Policy.manifest-src πŸ“‹Safari9/19/2017 Safari on iOS9/19/2017
http.headers.Timing-Allow-Origin πŸ“‹Safari9/19/2017 Safari on iOS9/19/2017
http.headers.X-Content-Type-Options πŸ“‹Safari9/19/2017 Safari on iOS9/19/2017
Chrome: Not supported for stylesheets.Chrome Android: Not supported for stylesheets.Opera: Not supported for stylesheets.Opera Android: Not supported for stylesheets.Samsung Internet: Not supported for stylesheets.WebView Android: Not supported for stylesheets.

2017/3

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.upgrade-insecure-requests πŸ“‹Safari3/27/2017 Safari on iOS3/27/2017
http.headers.Upgrade-Insecure-Requests πŸ“‹Safari3/27/2017 Safari on iOS3/27/2017

2016/9

API First Browser Date Last Browser Date Days Notes
http.headers.Content-Security-Policy.base-uri πŸ“‹Safari on iOS3/21/2016 Safari9/20/2016183
http.headers.Content-Security-Policy.block-all-mixed-content Safari on iOS9/13/2016 Safari9/20/20167
Chrome: Will be removed, see bug 40260100.Chrome Android: Will be removed, see bug 40260100.Edge: Will be removed, see bug 40260100.Quest Browser: Will be removed, see bug 40260100.Opera: Will be removed, see bug 40260100.Opera Android: Will be removed, see bug 40260100.Samsung Internet: Will be removed, see bug 40260100.WebView Android: Will be removed, see bug 40260100.
http.headers.Content-Security-Policy.child-src πŸ“‹Safari on iOS3/21/2016 Safari9/20/2016183
http.headers.Content-Security-Policy.form-action πŸ“‹Safari on iOS3/21/2016 Safari9/20/2016183
http.headers.Content-Security-Policy.frame-ancestors πŸ“‹Safari on iOS3/21/2016 Safari9/20/2016183
Firefox: Before Firefox 58, frame-ancestors is ignored in Content-Security-Policy-Report-Only.Firefox for Android: Before Firefox for Android 58, frame-ancestors is ignored in Content-Security-Policy-Report-Only.
http.headers.Content-Security-Policy.worker_support Safari on iOS9/13/2016 Safari9/20/20167

2016/3

API First Browser Date Last Browser Date Days Notes
http.mixed-content πŸ“‹Safari3/21/2016 Safari on iOS3/21/2016
http.mixed-content.blockable_mixed_content πŸ“‹Safari3/21/2016 Safari on iOS3/21/2016
Chrome: From version 79 blocks iframes, scripts, and stylesheets.Chrome Android: From version 79 blocks iframes, scripts, and stylesheets.Edge: From version 79 blocks iframes, scripts, and stylesheets.Quest Browser: From version 8.0 blocks iframes, scripts, and stylesheets.Opera: From version 66 blocks iframes, scripts, and stylesheets.Opera Android: From version 57 blocks iframes, scripts, and stylesheets.Samsung Internet: From version 12.0 blocks iframes, scripts, and stylesheets.WebView Android: From version 79 blocks iframes, scripts, and stylesheets.

2013/10

API First Browser Date Last Browser Date Days Notes
http.headers.Authorization.NTLM Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Authorization.Negotiate πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
Internet Explorer: Only supporting 'sandbox' directive.
http.headers.Content-Security-Policy.connect-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
Firefox: Before Firefox 50, ping attributes of <a> elements weren't covered by connect-src.
http.headers.Content-Security-Policy.default-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.font-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.frame-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.img-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.media-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.meta-element-support Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.object-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.report-uri πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.sandbox πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.script-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy.style-src πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.Content-Security-Policy-Report-Only πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.SourceMap πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
Chrome: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Chrome Android: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Edge: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Quest Browser: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Opera: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Opera Android: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.Samsung Internet: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.WebView Android: Not supported for ECMAScript Modules (<script type="module">). See bug 40854862.
http.headers.Strict-Transport-Security πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.headers.WWW-Authenticate.NTLM Safari on iOS9/18/2013 Safari10/22/201334
http.headers.WWW-Authenticate.Negotiate πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
http.status.308 πŸ“‹Safari on iOS9/18/2013 Safari10/22/201334
Internet Explorer: Does not work below Windows 10.

2012/9

API First Browser Date Last Browser Date Days Notes
http.headers.Sec-WebSocket-Accept πŸ“‹Safari7/25/2012 Safari on iOS9/10/201247
http.headers.Sec-WebSocket-Extensions πŸ“‹Safari7/25/2012 Safari on iOS9/10/201247
http.headers.Sec-WebSocket-Key πŸ“‹Safari7/25/2012 Safari on iOS9/10/201247
http.headers.Sec-WebSocket-Protocol πŸ“‹Safari7/25/2012 Safari on iOS9/10/201247
http.headers.Sec-WebSocket-Version πŸ“‹Safari7/25/2012 Safari on iOS9/10/201247

2010/11

API First Browser Date Last Browser Date Days Notes
http.headers.Upgrade πŸ“‹Safari6/7/2010 Safari on iOS11/22/2010168

2010/6

API First Browser Date Last Browser Date Days Notes
http.headers.Set-Cookie.HttpOnly Safari6/7/2010 Safari on iOS6/21/201014

2010/4

API First Browser Date Last Browser Date Days Notes
http.headers.Access-Control-Allow-Credentials πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Allow-Headers πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Allow-Methods πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Allow-Origin πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Expose-Headers πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Max-Age πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Request-Headers πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.Access-Control-Request-Method πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.X-Frame-Options πŸ“‹Safari6/8/2009 Safari on iOS4/3/2010299
http.headers.X-Frame-Options.SAMEORIGIN Safari6/8/2009 Safari on iOS4/3/2010299
Chrome: Starting in Chrome 61, this applies to all of a frame's ancestors.Chrome Android: Starting in Chrome Android 61, this applies to all of a frame's ancestors.Firefox: Starting in Firefox 59, this applies to all of a frame's ancestors.Firefox for Android: Starting in Firefox for Android 59, this applies to all of a frame's ancestors.Quest Browser: Starting in Quest Browser 5.0, this applies to all of a frame's ancestors.Opera: Starting in Opera 48, this applies to all of a frame's ancestors.Opera Android: Starting in Opera Android 45, this applies to all of a frame's ancestors.Samsung Internet: Starting in Samsung Internet 8.0, this applies to all of a frame's ancestors.WebView Android: Starting in WebView Android 61, this applies to all of a frame's ancestors.

2008/7

API First Browser Date Last Browser Date Days Notes
http.data-url πŸ“‹Safari3/18/2008 Safari on iOS7/11/2008115
Edge: Before Edge 79, the maximum size supported is 4GB.Internet Explorer: Since Internet Explorer 9, the maximum size supported is 4GB.Internet Explorer: In Internet Explorer 8, the maximum size supported is 32kB.
http.data-url.css_files Safari3/18/2008 Safari on iOS7/11/2008115
http.data-url.html_files Safari3/18/2008 Safari on iOS7/11/2008115
http.data-url.js_files Safari3/18/2008 Safari on iOS7/11/2008115

2007/6

API First Browser Date Last Browser Date Days Notes
http.headers.Accept πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
Firefox: In Firefox 66, the default Accept header value changed to */*.Firefox for Android: In Firefox for Android 66, the default Accept header value changed to */*.
http.headers.Accept-Encoding πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Accept-Language πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Accept-Ranges πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Age πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Authorization πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Authorization.Basic πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Authorization.Digest πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Authorization.Digest.md5 Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Cache-Control πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Connection πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Content-Disposition πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
Chrome: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Chrome Android: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Firefox: From version 82, if an <a> element's download attribute is set (for a same-origin URL) then the inline directive is ignored. Earlier versions did not match the specification and respected the header directive over the attribute. See bug 1658877.Firefox for Android: From version 82, if an <a> element's download attribute is set (for a same-origin URL) then the inline directive is ignored. Earlier versions did not match the specification and respected the header directive over the attribute. See bug 1658877.Quest Browser: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Opera: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Opera Android: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.Safari: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 18384.Safari on iOS: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 18384.Samsung Internet: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.WebView Android: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 352093465.WebView on iOS: When saving documents, the document title is used instead of the filename parameter if the disposition type is inline. See bug 18384.
http.headers.Content-Encoding πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Content-Language πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Content-Length πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Content-Location πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Content-Range πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Content-Type πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Cookie πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
Safari: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.Safari on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.WebView on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.
http.headers.Date πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.ETag πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Expires πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.From πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Host πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.If-Match πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.If-Modified-Since πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.If-None-Match πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.If-Range πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.If-Unmodified-Since πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Keep-Alive πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Last-Modified πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Location πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Origin πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
Edge: Not sent with POST requestsFirefox: Not sent with POST requests, see bug 446344.Firefox for Android: Not sent with POST requests, see bug 446344.
http.headers.Pragma πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Proxy-Authenticate πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Range πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Referer πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Refresh πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
Firefox: From version 136 the HTTP Referer header is sent following a refresh that redirects to another page (if permitted)Firefox for Android: From version 136 the HTTP Referer header is sent following a refresh that redirects to another page (if permitted)
http.headers.Server πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Set-Cookie πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
Safari: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.Safari on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.WebView on iOS: Cookies with Secure flag are not sent to unsecured http://localhost/ endpoints. See bug 281149.
http.headers.Set-Cookie.Max-Age Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.TE πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Transfer-Encoding πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.User-Agent πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Vary πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Via πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.WWW-Authenticate πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.WWW-Authenticate.Basic πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.WWW-Authenticate.Digest πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.WWW-Authenticate.Digest.md5 Safari6/23/2003 Safari on iOS6/29/20071467
http.headers.Warning πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.CONNECT πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.DELETE πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.GET πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.HEAD πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.OPTIONS πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.POST πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467
http.methods.PUT πŸ“‹Safari6/23/2003 Safari on iOS6/29/20071467