URL Scan Results for https://www.onepeloton.com/membership-terms?utm_medium=email&utm_source=transactional&utm_campaign=support%40onepeloton.com

Summary

A Concise Overview of the scan result of url https://www.onepeloton.com/membership-terms?utm_medium=email&utm_source=transactional&utm_campaign=support%40onepeloton.com

Document
HTML
4
StyleSheets
3
Scripts
74
Font
1
Images
3
Links
31
JavaScript Variables
98
Console log messages
0
Network
Requests
104
Bytes Transferred
2.06MB
Bytes Total
8.72MB

DNS Record
CNAME Record
2
A Record
2
AAAA Record
2
Technology
CMS
1
Maps
1
Payment processors
1
JavaScript frameworks
1
Web servers
1
Reverse proxies
1
Font scripts
1
A/B Testing
1
Personalisation
1
Cookie compliance
1
PaaS
1
CDN
1
Security
1

Links

The outgoing links identified from the page.

Link	Text
https://apparel.onepeloton.com/	Apparel
https://members.onepeloton.com/preferences/profile-info	https://members.onepeloton.com/preferences/profile-info
mailto:[email protected]	[email protected]
mailto:[email protected]	[email protected]
https://business.onepeloton.com/	Peloton for Business
https://downloads.ctfassets.net/6jnflt57iyzx/59EciC2hgJjZ8XoSnbBGbw/e3ee7a80635afee254708c5cc8f2c567/Peloton_Report_Executive_Summary.pdf	The Peloton Report
https://careers.onepeloton.com	Careers
https://global.onepeloton.com/	Global
https://investor.onepeloton.com/	Investors
https://hospitality.onepeloton.com/	Hotel Finder
https://booking.onepeloton.com	Book a Test Class
https://studio.onepeloton.com	Studio
https://support.onepeloton.com/s/contact-us	Contact Peloton
https://support.onepeloton.com/	Member Support Center
https://support.onepeloton.com/s/article/201108256-Peloton-Return-Policy	Return Policy
https://support.onepeloton.com/s/article/4404036415764-Peloton-Warranties-Protection-Plans?language=en_US	Warranties& Protection Plans
https://support.onepeloton.com/s/article/203078315-What-To-Expect-From-The-In-Home-Delivery-And-Set-Up-Of-Your-Peloton-Bike	Shipping
https://support.onepeloton.com/s/article/360060446032-Peloton-Recall-Information?language=en_US	Product Recalls
tel:+1-866-679-9129	Phone1⁠-⁠866⁠-⁠679⁠-⁠9129
https://www.facebook.com/onepeloton	FacebookFacebook
https://www.instagram.com/onepeloton	InstagramInstagram
https://twitter.com/onepeloton	TwitterTwitter
https://www.youtube.com/c/onepeloton	YoutubeYou Tube
https://itunes.apple.com/app/apple-store/id792750948?pt=34104800&ct=web-digital&mt=8	Apple Logo
https://play.google.com/store/apps/details?id=com.onepeloton.callisto&referrer=utm_source%3Donepeloton%26utm_medium%3DdigitalMarketingPage	Google Logo
https://www.amazon.com/gp/product/B07FTXNXCF	Amazon Logo
https://channelstore.roku.com/details/592506	Roku Logo
https://investor.onepeloton.com/static-files/41dcc383-d0b9-48d1-99f5-cadc394ab47a	California Transparency ActCalifornia Transparency Act
javascript:window.Optanon.ToggleInfoDisplay()	Cookie Preference Center
https://www.onepeloton.co.uk/privacy-policy	More information about your privacy, opens in a new tabPrivacy Policy
https://www.onetrust.com/products/cookie-consent/	Powered by OneTrust Opens in a new Tab

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

0string1stringonbeforetogglestringonscrollendstring__promiseHooksstringjsonFeedstringOneTrustStubstringgooglestringlitHtmlVersionsstringmodule$exports$mapsapi$geometry$sphericalstringlitElementVersionsstringreactiveElementVersionsstringmodule$contents$mapsapi$overlay$overlayView_OverlayViewstringOptanonWrapperstring__trackAbandonsstringOnetrustActiveGroupsstringOptanonActiveGroupsstringdataLayerstringotStubDatastringwebpackChunk_N_Estring_stringoptimizelystring__next_set_public_path__stringnextstring__NEXT_DATA__string__SSG_MANIFEST_CBstring__NEXT_Pstring_N_Estring__NEXT_PRELOADREADYstringregeneratorRuntimestringDD_RUMstring__core-js_shared__string__MIDDLEWARE_MATCHERSstring__BUILD_MANIFESTstring__SSG_MANIFESTstring__APOLLO_CLIENT__stringanalyticsstringdriftstringdrifttstringOptanonstringOneTruststringpelotonstring_iterableToArrayLimitstringownKeysstring_objectSpread2string_typeofstring_definePropertystring_slicedToArraystring_arrayWithHolesstring_unsupportedIterableToArraystring_arrayLikeToArraystring_nonIterableReststring_toPrimitivestring_toPropertyKeystringAF_URL_SCHEMEstringVALID_AF_URL_PARTS_LENGTHstringGOOGLE_CLICK_IDstringASSOCIATED_AD_KEYWORDstringAF_KEYWORDSstringAF_CUSTOM_EXCLUDE_PARAMS_KEYSstringGCLID_EXCLUDE_PARAMS_KEYSstringLOCAL_STORAGE_VALUESstringisSkippedURLstringgetGoogleClickIdParametersstringstringifyParametersstringgetParameterValuestringisIOSstringisUACHSupportedstringgetQueryParamsAndSaveToLocalStoragestringisValidUrlstringgetCurrentUrlstringgetReferrerUrlstringisSameOriginstringsaveWebReferrerstringremoveExpiredLocalStorageItemsstringaggregateValuesFromParametersstringgetCurrentURLParamsstringisOneLinkURLValidstringvalidatedMsstringisSkipListsValidstringextractCustomParamsstringvalidateAndMappedParamsstringisPlatformValidstringgetUserAgentDatastringcreateImpressionsLinkstringgetHexColorAfterValidationstringQRCodestringversionstringformatVersionstringAF_SMART_SCRIPTstring_0x225estring_0x6fa5e7string_0x5c96stringjifitiEnvironmentUrlsstringOfferByPricestringwebpackChunkStripeJSouterstringnoopstringStripestring

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
CMS
Contentful https://www.contentful.com	Contentful is an API-first content management platform to create, manage and publish content on any digital channel.	Type: html Regex: <[^>]{1,250}(?:assets\|downloads\|images\|videos)\.(?:ct?fassets\.net\|contentful\.com)
JavaScript frameworks
React https://reactjs.org	React is an open-source JavaScript library for building user interfaces or UI components.	Type: html Regex: <[^>]{1,250}data-react
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)
Font scripts
Typekit https://typekit.com	Typekit is an online service which offers a subscription library of fonts.	Type: html Regex: <link [^>]{0,250}href="[^"]{1,250}use\.typekit\.(?:net\|com)
Web servers
Nginx https://nginx.org/en	Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.	Type: headers Name: server Regex: nginx(?:\/([\d.]{1,250}))?
CDN
Netlify https://www.netlify.com/	Netlify providers hosting and server-less backend services for web applications and static websites.	Type: headers Name: x-nf-request-id Regex: ^Netlify
Maps
Google Maps https://maps.google.com	Google Maps is a web mapping service. It offers satellite imagery, aerial photography, street maps, 360° interactive panoramic views of streets, real-time traffic conditions, and route planning for traveling by foot, car, bicycle and air, or public transportation.	Type: scriptSrc Regex: \/\/maps\.google(?:apis)?\.com\/maps\/api\/js
Payment processors
Stripe https://stripe.com	Stripe offers online payment processing for internet businesses as well as fraud prevention, invoicing and subscription management.	Type: scriptSrc Regex: js\.stripe\.com
PaaS
Netlify https://www.netlify.com/	Netlify providers hosting and server-less backend services for web applications and static websites.	Type: headers Name: x-nf-request-id Regex: ^Netlify
Reverse proxies
Nginx https://nginx.org/en	Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.	Type: headers Name: server Regex: nginx(?:\/([\d.]{1,250}))?
Cookie compliance
OneTrust https://www.onetrust.com	OneTrust is a cloud-based data privacy management compliance platform.	Type: scriptSrc Regex: cdn\.cookielaw\.org
A/B Testing
Optimizely https://www.optimizely.com	Optimizely is an experimentation platform that helps developers build and run A/B tests on websites.	Type: scriptSrc Regex: optimizely\.com.{0,250}\.js
Personalisation
Optimizely https://www.optimizely.com	Optimizely is an experimentation platform that helps developers build and run A/B tests on websites.	Type: scriptSrc Regex: optimizely\.com.{0,250}\.js

DNS Record

A DNS record maps a domain name to an IP address or other resource information.

Type	Name	Content	DNSSEC
CNAME	www.onepeloton.com	peloton.netlifyglobalcdn.com.	no
A	peloton.netlifyglobalcdn.com	54.156.13.12	no
A	peloton.netlifyglobalcdn.com	3.212.91.35	no
CNAME	www.onepeloton.com	peloton.netlifyglobalcdn.com.	no
AAAA	peloton.netlifyglobalcdn.com	2600:1f18:16e:df00::1f4	no
AAAA	peloton.netlifyglobalcdn.com	2600:1f18:16e:df01::1f4	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
*.www.prod-test.onepeloton.com DigiCert G5 TLS RSA4096 SHA384 2021 CA1	3/8/2024	3/7/2025	12 months 4 days
cookielaw.org Cloudflare Inc ECC CA-3	3/1/2024	12/31/2024	10 months 5 days
onetrust.com Cloudflare Inc ECC CA-3	11/13/2023	11/12/2024	1 year
upload.video.google.com GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
use.typekit.net DigiCert Global G2 TLS RSA SHA256 2020 CA1	2/1/2024	3/3/2025	1 year 1 month 1 day
cdn.optimizely.com DigiCert TLS RSA SHA256 2020 CA1	9/1/2023	9/4/2024	1 year 4 days
*.gstatic.com GTS CA 1C3	5/21/2024	8/13/2024	2 months 23 days
nebula.onepeloton.com R3	5/25/2024	8/23/2024	2 months 29 days
*.sp.jifiti.com Amazon RSA 2048 M02	1/24/2024	2/22/2025	1 year 1 month
prod.k8s.onepeloton.com E5	6/7/2024	9/5/2024	2 months 29 days
logx.optimizely.com DigiCert Global G2 TLS RSA SHA256 2020 CA1	5/15/2024	11/10/2024	5 months 29 days
a.stripecdn.com DigiCert SHA2 Extended Validation Server CA	5/22/2024	8/22/2024	3 months 2 days

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
cache-control	no-store, no-cache, must-revalidate
content-encoding	gzip
content-type	text/html; charset=UTF-8
date	Tue, 11 Jun 2024 16:14:58 GMT
expires	Thu, 19 Nov 1981 08:52:00 GMT
location	https://www.onepeloton.com/membership-terms?utm_medium=email&utm_source=transactional&utm_campaign=support%40onepeloton.com
pragma	no-cache
server	nginx
transfer-encoding	chunked
vary	Accept-Encoding

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
PHPSESSID	h0030p1dvi4ivknc6ols0qauba	mandrillapp.com/	12/31/1969, 11:59:59 PM	yes	yes
optimizelyEndUserId	oeu1718122499556r0.2560572974151305	.onepeloton.com/	12/8/2024, 4:14:59 PM	no	no
shopSessionId	af15a8e6-8e68-43a4-843c-c3e4cab71362	.onepeloton.com/	7/11/2024, 4:15:04 PM	yes	yes
__cf_bm	erQJ6UrYC_8Im1Wl3unIRFABMzZmZIuEevcQUqOKnmg-1718122502-1.0.1.1-j1NDx_XDVupxn0usrJdlVrCfduDm38s8uKC8blrForT4vtBiHIY3mO94nkhV1XH72hFGDaUhinssCAhZUVIKDQ	.prod.k8s.onepeloton.com/	6/11/2024, 4:45:02 PM	yes	yes
OptanonConsent	isGpcEnabled=0&datestamp=Tue+Jun+11+2024+16%3A15%3A03+GMT%2B0000+(Coordinated+Universal+Time)&version=202312.1.0&browserGpcFlag=0&isIABGlobal=false&hosts=&consentId=c900be9d-24ac-4ba3-9894-d48bc0a6d714&interactionCount=0&landingPath=https%3A%2F%2Fwww.onepeloton.com%2Fmembership-terms%3Futm_medium%3Demail%26utm_source%3Dtransactional%26utm_campaign%3Dsupport%2540onepeloton.com&groups=C0002%3A0%2CC0004%3A0%2CC0003%3A0%2CC0001%3A1	.onepeloton.com/	6/11/2025, 4:15:03 PM	no	no