Status pages on the Plus plan support custom HTTP response headers.

Add cross-origin resource sharing (CORS), security, and custom headers to HTTP responses returned by your status page.

The following security headers are supported: HTTP Strict Transport Security (HSTS), X-XSS-Protection, X-Content-Type-Options, X-Frame-Options, Referrer-Policy and Content-Security-Policy.

You can also add customizable key-value pairs to response headers. The custom headers are added to every response to your status page viewers.

Create a support ticket to add or modify any custom headers for your status page.

Note: The Content-Security-Policy header value is limited to 1783 characters.