Shopify HackerOne
customer-identity-staging.shopify.io
Endpoints (4 of 4)
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
/
8443
403
4522
Attention Required! | Cloudflare
Content-Type: text/html
/
80
301
0
None
Location: https://customer-identity-staging.shopify.io/
/
8080
403
4522
Attention Required! | Cloudflare
Content-Type: text/html
/
443
302
0
None
Location: https://customer-identity-staging.shopify.io/lookup
Content-Type: text/html
- Path: /
- Port: 8443
- Status Code: 403
- Title: Attention Required! | Cloudflare
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:29:46 GMT
Vary: Accept-Encoding
Cf-Ray: 85f49ece8c4043bc-EWR
Server: cloudflare
Alt-Svc: h3=":8443"; ma=86400
Expires: Mon, 04 Mar 2024 20:30:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KJyRbzQcMRMTkTCEnROSobFF6HzUhg75MTryHVu5qN0doeu7XEcFtkCBRxjHjg%2BtWkUD6BTvjqFsxFzvUjGYB2Fm0vtNzfHpg5HyYIlONKfQ%2FkBTO4HEhCTEEqYy0e9rdUzIl5xlZcjVn9L%2FfpMlPw35R8txSLJ%2BQE%2Ft"}],"group":"cf-nel","max_age":604800}
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=15
Server-Timing: cfRequestDuration;dur=8.999825
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
-
First snapshot:
1 year, 4 months ago
-
Latest snapshot:
1 year, 4 months ago
- Path: /
- Port: 80
- Status Code: 301
- Title: None
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:30:06 GMT
Vary: Accept-Encoding
Cf-Ray: 85f49f4b7bdc8cb9-EWR
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
Expires: Mon, 04 Mar 2024 21:30:06 GMT
Location: https://customer-identity-staging.shopify.io/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3PJEmCSe8sG%2BTcdFTrnreZ4C0ShLNpG5qIQofVNm3TBNUXEO6XThWoEP38JEKT7hif9f2I2CdONkZPqPH62llXJ6TEieTTkOXRBGjiE5IJ3OEgnzMJTcjpaVQMtWjF41Tatu5cjF6%2BE7SBtp6pG46zuCy4igWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
Cache-Control: max-age=3600
Server-Timing: cfRequestDuration;dur=9.000063
X-Content-Type-Options: nosniff
-
First snapshot:
1 year, 4 months ago
-
Latest snapshot:
1 year, 4 months ago
- Path: /
- Port: 8080
- Status Code: 403
- Title: Attention Required! | Cloudflare
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:30:06 GMT
Vary: Accept-Encoding
Cf-Ray: 85f49f4b7fbe7d06-EWR
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
Expires: Mon, 04 Mar 2024 20:30:21 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgUp6nJR3WCII%2B91ZOPZ0BnvQeKBKinUuTxpN%2F%2FbzNyUTnFnUqpff1BsKzGGqECaXr8kOFwayg6pd371iUKY7AHdnCCdG4gQjSmbwQxNIohpXMXypq4QcXJyYfFdGay5wS6%2FAqLYWKjrQETPzD92l9y1rC1iXxTkZO2P"}],"group":"cf-nel","max_age":604800}
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=15
Server-Timing: cfRequestDuration;dur=9.000063
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
-
First snapshot:
1 year, 4 months ago
-
Latest snapshot:
1 year, 4 months ago
- Path: /
- Port: 443
- Status Code: 302
- Title: None
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:30:06 GMT
Vary: Accept-Encoding
X-Dc: gcp-us-east1,gcp-us-east1
Cf-Ray: 85f49f4b5888c402-EWR
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
Location: https://customer-identity-staging.shopify.io/lookup
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4jilWosfQ%2BUYx0LPFDhKJX9gmp1oFWTSuqMwdvvzJIoTXjlXgLkfAqCu3kxia9%2Bhx8mTZaVmuQQIQbG5uf4wbI13wjsGA%2BdNP9Or19%2FJNq4l%2B%2FrOUHQPSjyay4TJHpPGqfnRLpKquy%2FP6zZL%2BwrtaqyONGJE1g%3D%3D"}],"group":"cf-nel","max_age":604800}
Set-Cookie: device_id=QcNEtloy8OyRgWcS839ZLBg%2Fo3rcLfaWKoGS%2FgOEQUcV488ooeaZrekrZIykLZu3e4z43l0bOPZdgw3EQHCge5VkNwifvSHGZQryw9Z7FDheCWYKltRW%2FDhIYP0cCa0ojimapVn4tEy%2B2zmr0gdVxmA%3D--rQSoEMhgg57EC0tS--7kvm5KWHpe5ti6aIRtiTkA%3D%3D; path=/; expires=Fri, 04 Mar 2044 20:30:06 GMT; SameSite=None; secure; HttpOnly, _identity_session=733e7d05df9e5e9bf5818e0271fbc25e; path=/; expires=Wed, 04 Mar 2026 20:30:06 GMT; secure; HttpOnly; SameSite=None, __Host-_identity_session_same_site=733e7d05df9e5e9bf5818e0271fbc25e; path=/; expires=Wed, 04 Mar 2026 20:30:06 GMT; secure; HttpOnly; SameSite=Lax
Content-Type: text/html; charset=utf-8
X-Request-Id: 9c0cd61e-e8d7-427c-a2bd-9f164ebcc465-1709584206
Cache-Control: no-cache, no-store, private, must-revalidate, max-age=0
Server-Timing: processing;dur=42, socket_queue;dur=1.46, edge;dur=1.016, util;dur=0.0, cfRequestDuration;dur=92.000008
Content-Length: 0
Cf-Cache-Status: BYPASS
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block; report=/xss-report?source%5Baction%5D=index&source%5Bapp%5D=identity&source%5Bcontroller%5D=home&source%5Buuid%5D=9c0cd61e-e8d7-427c-a2bd-9f164ebcc465-1709584206
X-Download-Options: noopen
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Cross-Origin-Opener-Policy: same-origin
X-Envoy-Upstream-Service-Time: 43
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src https://www.google.com/recaptcha/ https://www.recaptcha.net; connect-src 'self' https://app.myshopify.io/ https://atlas.shopifysvc.com/ https://monorail-edge.shopifysvc.com/ https://hcaptcha.com https://*.hcaptcha.com; font-src 'self' shopify-assets.shopifycdn.com shopify-assets.shopifycdn.net fonts.gstatic.com cdn.shopify.com cdn.shopifycdn.net; form-action 'self' https://app.myshopify.io/ https://shop.app/; frame-ancestors 'self'; frame-src https://www.google.com/recaptcha/ https://www.recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://*.spin.dev https://shop.app https://pay.shopify.com; img-src 'self' proxy.shopifycdn.com data: notify.bugsnag.com shopify-assets.shopifycdn.com shopify-assets.shopifycdn.net cdn.shopify.com cdn.shopifycdn.net www.gstatic.com; media-src 'none'; object-src 'self'; script-src 'self' 'unsafe-eval' 'sha256-6k4WOAfvSl7DOwpWH52bnc0hmtQQjXVf5jv/uDuT7D0=' https://shopify-assets.shopifycdn.com https://shopify-assets.shopifycdn.net https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://www.recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://*.spin.dev https://cdn.shopify.com https://cdn.shopifycdn.net https://www.recaptcha.net https://www.gstatic.cn; style-src 'unsafe-inline' 'self' https://shopify-assets.shopifycdn.com https://shopify-assets.shopifycdn.net https://cdn.shopify.com https://cdn.shopifycdn.net https://fonts.googleapis.com https://hcaptcha.com https://*.hcaptcha.com; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=index&source%5Bapp%5D=identity&source%5Bcontroller%5D=home&source%5Buuid%5D=9c0cd61e-e8d7-427c-a2bd-9f164ebcc465-1709584206
-
First snapshot:
1 year, 4 months ago
-
Latest snapshot:
1 year, 4 months ago
Page 1 of 1
Path
Port
Status Code
Content-Length
Title
Resp Headers
Content-Type: text/html
Location: https://customer-identity-staging.shopify.io/
Content-Type: text/html
Location: https://customer-identity-staging.shopify.io/lookup
Content-Type: text/html
- Path: /
- Port: 8443
- Status Code: 403
- Title: Attention Required! | Cloudflare
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:29:46 GMT
Vary: Accept-Encoding
Cf-Ray: 85f49ece8c4043bc-EWR
Server: cloudflare
Alt-Svc: h3=":8443"; ma=86400
Expires: Mon, 04 Mar 2024 20:30:01 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KJyRbzQcMRMTkTCEnROSobFF6HzUhg75MTryHVu5qN0doeu7XEcFtkCBRxjHjg%2BtWkUD6BTvjqFsxFzvUjGYB2Fm0vtNzfHpg5HyYIlONKfQ%2FkBTO4HEhCTEEqYy0e9rdUzIl5xlZcjVn9L%2FfpMlPw35R8txSLJ%2BQE%2Ft"}],"group":"cf-nel","max_age":604800}
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=15
Server-Timing: cfRequestDuration;dur=8.999825
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
- First snapshot: 1 year, 4 months ago
- Latest snapshot: 1 year, 4 months ago
- Path: /
- Port: 80
- Status Code: 301
- Title: None
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:30:06 GMT
Vary: Accept-Encoding
Cf-Ray: 85f49f4b7bdc8cb9-EWR
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
Expires: Mon, 04 Mar 2024 21:30:06 GMT
Location: https://customer-identity-staging.shopify.io/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3PJEmCSe8sG%2BTcdFTrnreZ4C0ShLNpG5qIQofVNm3TBNUXEO6XThWoEP38JEKT7hif9f2I2CdONkZPqPH62llXJ6TEieTTkOXRBGjiE5IJ3OEgnzMJTcjpaVQMtWjF41Tatu5cjF6%2BE7SBtp6pG46zuCy4igWQ%3D%3D"}],"group":"cf-nel","max_age":604800}
Cache-Control: max-age=3600
Server-Timing: cfRequestDuration;dur=9.000063
X-Content-Type-Options: nosniff
- First snapshot: 1 year, 4 months ago
- Latest snapshot: 1 year, 4 months ago
- Path: /
- Port: 8080
- Status Code: 403
- Title: Attention Required! | Cloudflare
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:30:06 GMT
Vary: Accept-Encoding
Cf-Ray: 85f49f4b7fbe7d06-EWR
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
Expires: Mon, 04 Mar 2024 20:30:21 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AgUp6nJR3WCII%2B91ZOPZ0BnvQeKBKinUuTxpN%2F%2FbzNyUTnFnUqpff1BsKzGGqECaXr8kOFwayg6pd371iUKY7AHdnCCdG4gQjSmbwQxNIohpXMXypq4QcXJyYfFdGay5wS6%2FAqLYWKjrQETPzD92l9y1rC1iXxTkZO2P"}],"group":"cf-nel","max_age":604800}
Content-Type: text/html; charset=UTF-8
Cache-Control: max-age=15
Server-Timing: cfRequestDuration;dur=9.000063
Referrer-Policy: same-origin
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
- First snapshot: 1 year, 4 months ago
- Latest snapshot: 1 year, 4 months ago
- Path: /
- Port: 443
- Status Code: 302
- Title: None
-
Nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Date: Mon, 04 Mar 2024 20:30:06 GMT
Vary: Accept-Encoding
X-Dc: gcp-us-east1,gcp-us-east1
Cf-Ray: 85f49f4b5888c402-EWR
Server: cloudflare
Alt-Svc: h3=":443"; ma=86400
Location: https://customer-identity-staging.shopify.io/lookup
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4jilWosfQ%2BUYx0LPFDhKJX9gmp1oFWTSuqMwdvvzJIoTXjlXgLkfAqCu3kxia9%2Bhx8mTZaVmuQQIQbG5uf4wbI13wjsGA%2BdNP9Or19%2FJNq4l%2B%2FrOUHQPSjyay4TJHpPGqfnRLpKquy%2FP6zZL%2BwrtaqyONGJE1g%3D%3D"}],"group":"cf-nel","max_age":604800}
Set-Cookie: device_id=QcNEtloy8OyRgWcS839ZLBg%2Fo3rcLfaWKoGS%2FgOEQUcV488ooeaZrekrZIykLZu3e4z43l0bOPZdgw3EQHCge5VkNwifvSHGZQryw9Z7FDheCWYKltRW%2FDhIYP0cCa0ojimapVn4tEy%2B2zmr0gdVxmA%3D--rQSoEMhgg57EC0tS--7kvm5KWHpe5ti6aIRtiTkA%3D%3D; path=/; expires=Fri, 04 Mar 2044 20:30:06 GMT; SameSite=None; secure; HttpOnly, _identity_session=733e7d05df9e5e9bf5818e0271fbc25e; path=/; expires=Wed, 04 Mar 2026 20:30:06 GMT; secure; HttpOnly; SameSite=None, __Host-_identity_session_same_site=733e7d05df9e5e9bf5818e0271fbc25e; path=/; expires=Wed, 04 Mar 2026 20:30:06 GMT; secure; HttpOnly; SameSite=Lax
Content-Type: text/html; charset=utf-8
X-Request-Id: 9c0cd61e-e8d7-427c-a2bd-9f164ebcc465-1709584206
Cache-Control: no-cache, no-store, private, must-revalidate, max-age=0
Server-Timing: processing;dur=42, socket_queue;dur=1.46, edge;dur=1.016, util;dur=0.0, cfRequestDuration;dur=92.000008
Content-Length: 0
Cf-Cache-Status: BYPASS
Referrer-Policy: origin-when-cross-origin
X-Frame-Options: DENY
X-Xss-Protection: 1; mode=block; report=/xss-report?source%5Baction%5D=index&source%5Bapp%5D=identity&source%5Bcontroller%5D=home&source%5Buuid%5D=9c0cd61e-e8d7-427c-a2bd-9f164ebcc465-1709584206
X-Download-Options: noopen
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=15552000; includeSubDomains; preload
Cross-Origin-Opener-Policy: same-origin
X-Envoy-Upstream-Service-Time: 43
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy-Report-Only: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src https://www.google.com/recaptcha/ https://www.recaptcha.net; connect-src 'self' https://app.myshopify.io/ https://atlas.shopifysvc.com/ https://monorail-edge.shopifysvc.com/ https://hcaptcha.com https://*.hcaptcha.com; font-src 'self' shopify-assets.shopifycdn.com shopify-assets.shopifycdn.net fonts.gstatic.com cdn.shopify.com cdn.shopifycdn.net; form-action 'self' https://app.myshopify.io/ https://shop.app/; frame-ancestors 'self'; frame-src https://www.google.com/recaptcha/ https://www.recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://*.spin.dev https://shop.app https://pay.shopify.com; img-src 'self' proxy.shopifycdn.com data: notify.bugsnag.com shopify-assets.shopifycdn.com shopify-assets.shopifycdn.net cdn.shopify.com cdn.shopifycdn.net www.gstatic.com; media-src 'none'; object-src 'self'; script-src 'self' 'unsafe-eval' 'sha256-6k4WOAfvSl7DOwpWH52bnc0hmtQQjXVf5jv/uDuT7D0=' https://shopify-assets.shopifycdn.com https://shopify-assets.shopifycdn.net https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://www.recaptcha.net/recaptcha/ https://hcaptcha.com https://*.hcaptcha.com https://*.spin.dev https://cdn.shopify.com https://cdn.shopifycdn.net https://www.recaptcha.net https://www.gstatic.cn; style-src 'unsafe-inline' 'self' https://shopify-assets.shopifycdn.com https://shopify-assets.shopifycdn.net https://cdn.shopify.com https://cdn.shopifycdn.net https://fonts.googleapis.com https://hcaptcha.com https://*.hcaptcha.com; upgrade-insecure-requests; report-uri /csp-report?source%5Baction%5D=index&source%5Bapp%5D=identity&source%5Bcontroller%5D=home&source%5Buuid%5D=9c0cd61e-e8d7-427c-a2bd-9f164ebcc465-1709584206
- First snapshot: 1 year, 4 months ago
- Latest snapshot: 1 year, 4 months ago