Status pages on the Plus plan support custom HTTP response headers.
Add cross-origin resource sharing (CORS), security, and custom headers to HTTP responses returned by your status page.
The following security headers are supported: HTTP Strict Transport Security (HSTS), X-XSS-Protection, X-Content-Type-Options, X-Frame-Options, Referrer-Policy and Content-Security-Policy.
You can also add customizable key-value pairs to response headers. The custom headers are added to every response to your status page viewers.
Create a support ticket to add or modify any custom headers for your status page.
Note: The Content-Security-Policy header value is limited to 1783 characters.