Redirecting - URL Scan Results

Summary

A Concise Overview of the scan result of url https://login.microsoftonline.com/ceb9cf8f-f6b6-42a0-9e4f-35c59532b165/oauth2/authorize?client_id=da577a11-98a6-405a-8ac9-13e5d1be5fc7&redirect_uri=https%3A%2F%2Frivervalleycoop.cloudflareaccess.com%2Fcdn-cgi%2Faccess%2Fcallback&resource=https%3A%2F%2Fgraph.microsoft.com&response_type=code&scope=openid&state=a3dab7c8f6ddcd7c4863ee07f565991907aa95e390d5876acaf77ee59e5da4c5.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%253D%253D

Document
HTML
5
StyleSheets
0
Scripts
3
Font
0
Images
0
Links
0
JavaScript Variables
30
Console log messages
0
Network
Requests
12
Bytes Transferred
120.81KB
Bytes Total
323.62KB

DNS Record
CNAME Record
6
A Record
8
AAAA Record
8
Technology
JavaScript libraries
1
Security
1

Links

The outgoing links identified from the page.

Link	Text

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

eventundefinedonbeforetoggleobjectfenceobjectsharedStorageobjectdocumentPictureInPictureobjectfetchLaterfunctiononpageswapobjectonpagerevealobjectmodelobjectonscrollendobject$Configobject$Debugobject$Doobject$Loaderfunction$WebWatsonobjectGetStringfunctionGetErrorStringfunctionGetUrlfunction$BobjectAddListenerfunctionClickEventListenerByIdfunctionClickEventListenerByNamefunctionServerDataobjectwebpackJsonpobjectkoobjectPROOFobject__BssoInterrupt_Coreboolean$functionjQueryfunction$Apiobject

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)
JavaScript libraries
jQuery https://jquery.com	jQuery is a JavaScript library which is a free, open-source software designed to simplify HTML DOM tree traversal and manipulation, as well as event handling, CSS animation, and Ajax.	Type: scriptSrc Regex: jquery

DNS Record

A DNS record maps a domain name to an IP address or other resource information.

Type	Name	Content	DNSSEC
CNAME	login.microsoftonline.com	login.mso.msidentity.com.	no
CNAME	login.mso.msidentity.com	ak.privatelink.msidentity.com.	no
CNAME	ak.privatelink.msidentity.com	www.tm.a.prd.aadg.trafficmanager.net.	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.196	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.193	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.194	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.131	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.132	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.130	no
A	www.tm.a.prd.aadg.trafficmanager.net	40.126.62.130	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.195	no
CNAME	login.microsoftonline.com	login.mso.msidentity.com.	no
CNAME	login.mso.msidentity.com	ak.privatelink.msidentity.com.	no
CNAME	ak.privatelink.msidentity.com	www.tm.a.prd.aadg.trafficmanager.net.	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:e8::3	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:f8::1	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:e8::2	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:e8::4	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:f0::4	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:f0::3	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:f0::2	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:f8::3	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
rivervalleycoop.cloudflareaccess.com	3/29/2026	3/30/2027	1 year 1 day
login.microsoftonline.com	3/29/2026	3/30/2027	1 year 1 day
aadcdn.msftauth.net	3/29/2026	3/30/2027	1 year 1 day
aadcdn.msauth.net	3/29/2026	3/30/2027	1 year 1 day

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
Cache-Control	no-store, no-cache
Content-Encoding	gzip
Content-Length	9981
Content-Security-Policy-Report-Only	object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-KoIDWY3ZRlX2cquz-eW8Cg' 'unsafe-inline' 'unsafe-eval' https://.msauth.net https://.msftauth.net https://.msftauthimages.net https://.msauthimages.net https://.msidentity.com https://.microsoftonline-p.com https://.microsoftazuread-sso.com https://.azureedge.net https://.outlook.com https://.office.com https://.office365.com https://.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
Content-Type	text/html; charset=utf-8
Date	Mon, 30 Mar 2026 18:49:31 GMT
Expires	-1
P3P	CP="DSP CUR OTPi IND OTRi ONL FIN"
Pragma	no-cache
Referrer-Policy	strict-origin-when-cross-origin
Strict-Transport-Security	max-age=31536000; includeSubDomains
Vary	Accept-Encoding
X-Content-Type-Options	nosniff
X-XSS-Protection	0
nel	{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
report-to	{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+est"}]}
x-ms-ests-server	2.1.23753.3 - SCUS ProdSlices
x-ms-request-id	ea37aed3-d604-4e54-979a-26deb1078100
x-ms-srs	1.P

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
CF_AppSession	[CF_AppSession redacted]	cf-rvc-portal.pages.dev/	3/31/2026, 6:49:30 PM	yes	yes
CF_Session	[CF_Session redacted]	rivervalleycoop.cloudflareaccess.com/	3/30/2026, 10:49:31 PM	yes	yes
esctx-xZoChDtqQmM	AQABCQEAAACvnsHKEvvRQb3Bz3Qc7wnaRXZvU3RzQXJ0aWZhY3RzDQAAAAAAVV5_k1L59nFawchx_CUembSkZggsDcGlTn7kufkgkeQJfaqU5mA1mQyjgZQhU-d43RHYP4v8ejojIpw6lEhmUc-fW4u68TX2BujXCMsy-Yw8LY7gzt-kHgnXHLOD_KNIx5CuTofGjfhPlNX8m2KLvSAA	.login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes
fpc	AkEiDpPgPcBOtdk59QmBO2E	login.microsoftonline.com/	4/29/2026, 6:49:31 PM	yes	yes
esctx	PAQABBwEAAACvnsHKEvvRQb3Bz3Qc7wnaRXZvU3RzQXJ0aWZhY3RzDQAAAAAA4By_SEhLWjtu9nF_N0rzZesQO7WzmWqqV9UU2pV-QHgclcAbznNueXtk_58vc8ftZva56-T24CqQywdEBe4r-xe61AM2EYkQYoFgJsb8cgmZGG1PGcR9oS0YvmsPRiiiadPRwOxmME5Kn2s_RH1q9HZro0uuBTSjQqjHO8AjUDUgAA	.login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes
x-ms-gateway-slice	estsfd	login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes
stsservicecookie	estsfd	login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes