Redirecting - URL Scan Results

Summary

A Concise Overview of the scan result of url https://login.microsoftonline.com/a6dbddde-5798-4eba-a5a8-78807e82d9eb/oauth2/v2.0/authorize?client_id=6204c1d1-4712-4c46-a7d9-3ed63d992682&scope=openid%20profile%20offline_access&redirect_uri=https%3A%2F%2Fmake.powerautomate.com%2Fauth&client-request-id=645f9f80-85d5-49e2-993c-324f81d60d0e&response_mode=fragment&response_type=code&x-client-SKU=msal.js.browser&x-client-VER=3.27.0&client_info=1&code_challenge=c-7zehb1YQopFs9l6DhHd5KI9ojHnBciYnw45Ekak9U&code_challenge_method=S256&nonce=019cde58-9ba4-72ea-ae0c-53c7f4616a54&state=eyJpZCI6IjAxOWNkZTU4LTliYTItNzI4Ni05OGFiLTZhMGNmZWYwNjEzMiIsIm1ldGEiOnsiaW50ZXJhY3Rpb25UeXBlIjoicmVkaXJlY3QifX0%3D&sso_reload=true

Document
HTML
3
StyleSheets
1
Scripts
8
Font
0
Images
0
Links
0
JavaScript Variables
31
Console log messages
0
Network
Requests
19
Bytes Transferred
1.42MB
Bytes Total
5.86MB

DNS Record
CNAME Record
6
A Record
8
AAAA Record
8
Technology
Security
1

Links

The outgoing links identified from the page.

Link	Text

JavaScript Variables

Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.

eventundefinedonbeforetoggleobjectfenceobjectsharedStorageobjectdocumentPictureInPictureobjectfetchLaterfunctiononpageswapobjectonpagerevealobjectmodelobjectonscrollendobject$Configobject$Debugobject$Doobject$Loaderfunction$WebWatsonobjectGetStringfunctionGetErrorStringfunctionGetUrlfunction$BobjectAddListenerfunctionClickEventListenerByIdfunctionClickEventListenerByNamefunctionServerDataobjectwebpackJsonpobjectkoobjectPROOFobjectStringRepositoryobjectTelemetryobjecttelemetry_webpackJsonpobject__ConvergedLogin_PCoreboolean__boolean

Technology

The technologies identified are present on the scanned URL.

Name	Description	Detected patterns
Security
HSTS https://www.rfc-editor.org/rfc/rfc6797#section-6.1	HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.	Type: headers Name: strict-transport-security Regex: (?:)

DNS Record

A DNS record maps a domain name to an IP address or other resource information.

Type	Name	Content	DNSSEC
CNAME	login.microsoftonline.com	login.mso.msidentity.com.	no
CNAME	login.mso.msidentity.com	ak.privatelink.msidentity.com.	no
CNAME	ak.privatelink.msidentity.com	www.tm.a.prd.aadg.trafficmanager.net.	no
A	www.tm.a.prd.aadg.trafficmanager.net	40.126.62.129	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.132	no
A	www.tm.a.prd.aadg.trafficmanager.net	40.126.62.130	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.131	no
A	www.tm.a.prd.aadg.trafficmanager.net	40.126.62.132	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.196	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.129	no
A	www.tm.a.prd.aadg.trafficmanager.net	20.190.190.194	no
CNAME	login.microsoftonline.com	login.mso.msidentity.com.	no
CNAME	login.mso.msidentity.com	ak.privatelink.msidentity.com.	no
CNAME	ak.privatelink.msidentity.com	www.tm.a.prd.aadg.trafficmanager.net.	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1037:1:128::9	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1037:1:128::7	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:138::6	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:138::3	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1037:1:130::3	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1037:1:130::6	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1036:3000:138::4	no
AAAA	www.tm.a.prd.aadg.trafficmanager.net	2603:1037:1:128::8	no

SSL Certificate

An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.

Subject	Issue date	Expiry date	Valid
make.powerautomate.com	3/10/2026	3/11/2027	1 year 1 day
content.powerapps.com	3/10/2026	3/11/2027	1 year 1 day
wcpstatic.microsoft.com	3/10/2026	3/11/2027	1 year 1 day
noam.events.data.microsoft.com	3/10/2026	3/11/2027	1 year 1 day
login.microsoftonline.com	3/10/2026	3/11/2027	1 year 1 day
aadcdn.msauth.net	3/10/2026	3/11/2027	1 year 1 day

HTTP Header

An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.

Name	Value
Cache-Control	no-store, no-cache
Content-Encoding	gzip
Content-Length	18039
Content-Security-Policy-Report-Only	object-src 'none'; base-uri 'self'; script-src 'self' 'nonce-bdNq-bKw3AtYyNS8P6_utw' 'unsafe-inline' 'unsafe-eval' https://.msauth.net https://.msftauth.net https://.msftauthimages.net https://.msauthimages.net https://.msidentity.com https://.microsoftonline-p.com https://.microsoftazuread-sso.com https://.azureedge.net https://.outlook.com https://.office.com https://.office365.com https://.microsoft.com https://*.bing.com 'report-sample'; report-uri https://csp.microsoft.com/report/ESTS-UX-All
Content-Type	text/html; charset=utf-8
Cross-Origin-Opener-Policy-Report-Only	same-origin; report-to="coop-endpoint"
Date	Wed, 11 Mar 2026 19:21:16 GMT
Expires	-1
Link	<https://aadcdn.msauth.net>; rel=preconnect; crossorigin <https://aadcdn.msauth.net>; rel=preconnect; crossorigin,<https://aadcdn.msauth.net>; rel=dns-prefetch <https://aadcdn.msauth.net>; rel=preconnect; crossorigin,<https://aadcdn.msauth.net>; rel=dns-prefetch,<https://aadcdn.msftauth.net>; rel=dns-prefetch
P3P	CP="DSP CUR OTPi IND OTRi ONL FIN"
Pragma	no-cache
Referrer-Policy	strict-origin-when-cross-origin
Reporting-Endpoints	coop-endpoint="https://idux.azurewebsites.net:443/api/coopReport?client_type=spa-msal&client_id=6204c1d1-4712-4c46-a7d9-3ed63d992682&correlation_id=645f9f80-85d5-49e2-993c-324f81d60d0e&sku=MsalJsBrowser&version=3.27.0&tenant=a6dbddde-5798-4eba-a5a8-78807e82d9eb"
Strict-Transport-Security	max-age=31536000; includeSubDomains
Vary	Accept-Encoding
X-Content-Type-Options	nosniff
X-DNS-Prefetch-Control	on
X-Frame-Options	DENY
X-XSS-Protection	0
nel	{"report_to":"network-errors","max_age":86400,"success_fraction":0.001,"failure_fraction":1.0}
report-to	{"group":"network-errors","max_age":86400,"endpoints":[{"url":"https://identity.nel.measure.office.net/api/report?catId=GW+estsfd+est"}]}
x-ms-clitelem	1,0,0,,
x-ms-ests-server	2.1.23565.3 - KRSLR1 ProdSlices
x-ms-request-id	331a0941-291e-4d64-b1e1-768770068a01
x-ms-srs	1.P

Content Security Policy

Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.

Name	Value

Cookies

Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.

Name	Value	Domain/Path	Expires	Secure	HTTP Only
make.powerautomate.com.AuthBootstrap.SessionId	[make.powerautomate.com.AuthBootstrap.SessionId redacted]	make.powerautomate.com/	3/11/2026, 7:31:14 PM	yes	no
make.powerautomate.com.AuthBootstrap.PathQueryHash	[make.powerautomate.com.AuthBootstrap.PathQueryHash redacted]	make.powerautomate.com/	3/11/2026, 7:31:14 PM	yes	no
esctx-Jkl9r0FFHLk	AQABCQEAAACvnsHKEvvRQb3Bz3Qc7wnaRXZvU3RzQXJ0aWZhY3RzDQAAAAAA9vW8TgklUL87peIwvvXaVIC2JveZByBPPDAwjjNcNEBh7oPpFRPpFkwdsqWLJlidBG94bF_shKyaCzaAWAb651lU8uzx33UaBVtcjAE-MaGgupMqhPoHNS9VMdG2BYLoHrWozxg6v6RuC3YXA266QiAA	.login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes
fpc	ArCzZketIXFEu0USipiFkaI	login.microsoftonline.com/	4/10/2026, 7:21:16 PM	yes	yes
esctx	PAQABBwEAAACvnsHKEvvRQb3Bz3Qc7wnaRXZvU3RzQXJ0aWZhY3RzDQAAAAAAA61kD4p2isX1WVFhVNYo4VddgUhnmCAy3zCeZ9b4SlyMoNkg5oQI2Fk2YAs9T4ARerieK1uTaDULMisbU9aXX8yxL7H8JC_mYENl6p9yGA_R1sQQJVY6iJAa5x_NZewFM6EebqHQ_r9dFnR7KlloFl0JMGO7E0jiC-56wdcgZmMgAA	.login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes
x-ms-gateway-slice	estsfd	login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes
stsservicecookie	estsfd	login.microsoftonline.com/	12/31/1969, 11:59:59 PM	yes	yes