References HTTP Reference Headers Timing-Allow-Origin
Collection
Language

Timing-Allow-Origin

The HTTP Timing-Allow-Origin response header specifies origins that are allowed to see values of attributes retrieved via features of the Resource Timing API, which would otherwise be reported as zero due to cross-origin restrictions.

Header type Response header
Forbidden request header No

Syntax

http
Timing-Allow-Origin: *
Timing-Allow-Origin: <origin>, …, <originN>

Directives

* (wildcard)

Any origin may see timing resources.

<origin>

Specifies a URI that may see the timing resources. You can specify multiple origins, separated by commas.

Examples

Using Timing-Allow-Origin

To allow any resource to see timing resources:

http
Timing-Allow-Origin: *

To allow https://developer.mozilla.org to see timing resources, you can specify:

http
Timing-Allow-Origin: https://developer.mozilla.org

Specifications

Browser compatibility

See also

In this article

Your blueprint for a better internet.

MDN
Support
Our communities
Developers

Visit Mozilla Corporation’s not-for-profit parent, the Mozilla Foundation.
Portions of this content are ©1998–2024 by individual mozilla.org contributors. Content available under a Creative Commons license.