The Timing-Allow-Origin
response header specifies origins that are allowed to see values of attributes retrieved via features of the Resource Timing API, which would otherwise be reported as zero due to cross-origin restrictions.
Header type | Response header |
---|---|
Forbidden header name | no |
Timing-Allow-Origin: * Timing-Allow-Origin: <origin>[, <origin>]*
To allow any resource to see timing resources:
Timing-Allow-Origin: *
To allow https://developer.mozilla.org
to see timing resources, you can specify:
Timing-Allow-Origin: https://developer.mozilla.org
Specification | Status | Comment |
---|---|---|
Resource Timing Level 3 The definition of 'Timing-Allow-Origin' in that specification. | Editor's Draft | Initial definition. |
Desktop | ||||||
---|---|---|---|---|---|---|
Chrome | Edge | Firefox | Internet Explorer | Opera | Safari | |
Basic support | Yes | ? | Yes | ? | Yes | Yes |
Mobile | |||||||
---|---|---|---|---|---|---|---|
Android webview | Chrome for Android | Edge Mobile | Firefox for Android | Opera for Android | iOS Safari | Samsung Internet | |
Basic support | Yes | Yes | ? | Yes | Yes | Yes | Yes |
© 2005–2018 Mozilla Developer Network and individual contributors.
Licensed under the Creative Commons Attribution-ShareAlike License v2.5 or later.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Timing-Allow-Origin