Summary
A Concise Overview of the scan result of url https://open.spotify.com/
- Document
- HTML
- 35
- StyleSheets
- 7
- Scripts
- 37
- Font
- 5
- Images
- 16
- Links
- 24
- JavaScript Variables
- 29
- Console log messages
- 0
- Network
- Requests
- 277
- Bytes Transferred
- 11.2MB
- Bytes Total
- 17.66MB
- DNS Record
- CNAME Record
- 2
- A Record
- 4
- AAAA Record
- 4
- Technology
- Caching
- 1
- Reverse proxies
- 1
- Security
- 2
- Cookie compliance
- 1
- Tag managers
- 1
- A/B Testing
- 1
Document
Links
The outgoing links identified from the page.
Link | Text |
---|---|
https://www.spotify.com/es/legal/ | Legal |
https://www.spotify.com/es/safetyandprivacy/ | Safety& Privacy Center |
https://www.spotify.com/es/legal/privacy-policy/ | Privacy Policy |
https://www.spotify.com/es/legal/privacy-policy/#s3 | About Ads |
https://www.spotify.com/es/accessibility/ | Accessibility |
https://www.spotify.com/legal/cookies-policy/ | Cookies |
https://www.spotify.com/es/about-us/contact/ | About |
https://www.lifeatspotify.com/ | Jobs |
https://newsroom.spotify.com/ | For the Record |
https://artists.spotify.com/ | For Artists |
https://developer.spotify.com/ | Developers |
https://ads.spotify.com/ | Advertising |
https://investors.spotify.com/ | Investors |
https://spotifyforvendors.com/ | Vendors |
https://support.spotify.com/ | Support |
https://www.spotify.com/es/free/ | Free Mobile App |
https://www.spotify.com/es/premium/?ref=spotifycom_footer_premium_individual | Premium Individual |
https://www.spotify.com/es/duo/?ref=spotifycom_footer_premium_duo | Premium Duo |
https://www.spotify.com/es/family/?ref=spotifycom_footer_premium_family | Premium Family |
https://www.spotify.com/es/student/?ref=spotifycom_footer_premium_student | Premium Student |
https://www.spotify.com/es/free/?ref=spotifycom_footer_free | Spotify Free |
https://instagram.com/spotify | |
https://twitter.com/spotify | |
https://www.facebook.com/Spotify |
JavaScript Variables
Global JavaScript variables are variables that are defined outside of any function or block scope in JavaScript.
Technology
The technologies identified are present on the scanned URL.
Name | Description | Detected patterns |
---|---|---|
Security | ||
reCAPTCHA | reCAPTCHA is a free service from Google that helps protect websites from spam and abuse. | Type: scriptSrc Regex: \/recaptcha\/(?:api|enterprise)\.js |
HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS. | Type: headers Name: strict-transport-security Regex: (?:) | |
Caching | ||
Varnish is a reverse caching proxy. | Type: headers Name: via Regex: varnish(?: \(Varnish\/([\d.]{1,250})\))? | |
Tag managers | ||
Google Tag Manager | Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app. | Type: scriptSrc Regex: googletagmanager\.com\/gtm\.js |
Reverse proxies | ||
Envoy is an open-source edge and service proxy, designed for cloud-native applications. | Type: headers Name: x-envoy-upstream-service-time Regex: ^envoy$ | |
Cookie compliance | ||
OneTrust | OneTrust is a cloud-based data privacy management compliance platform. | Type: scriptSrc Regex: cdn\.cookielaw\.org |
A/B Testing | ||
Google Optimize | Google Optimize allows you to test variants of web pages and see how they perform. | Type: scriptSrc Regex: googleoptimize\.com\/optimize\.js |
Performance
The speed and efficiency of the scanned URL loads and displays its content.
- dns
- 1 msGood
- tcp
- 1 msGood
- requestTime
- 45 msGood
- dom
- 45 msGood
DNS Record
A DNS record maps a domain name to an IP address or other resource information.
Type | Name | Content | DNSSEC |
---|---|---|---|
CNAME | open.spotify.com | atc.spotify.map.fastly.net. | no |
A | atc.spotify.map.fastly.net | 151.101.3.42 | no |
A | atc.spotify.map.fastly.net | 151.101.131.42 | no |
A | atc.spotify.map.fastly.net | 151.101.195.42 | no |
A | atc.spotify.map.fastly.net | 151.101.67.42 | no |
CNAME | open.spotify.com | atc.spotify.map.fastly.net. | no |
AAAA | atc.spotify.map.fastly.net | 2a04:4e42:200::810 | no |
AAAA | atc.spotify.map.fastly.net | 2a04:4e42:400::810 | no |
AAAA | atc.spotify.map.fastly.net | 2a04:4e42:600::810 | no |
AAAA | atc.spotify.map.fastly.net | 2a04:4e42::810 | no |
SSL Certificate
An SSL certificate is a digital certificate that verifies the authenticity and encrypts the communication between a website and its visitors.
Subject | Issue date | Expiry date | Valid |
---|---|---|---|
open.spotify.com Certainly Intermediate R1 | 9/19/2024 | 10/19/2024 | 29 days |
*.scdn.co DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 7/9/2024 | 8/9/2025 | 1 year 1 month 1 day |
*.spotifycdn.com GlobalSign Atlas R3 DV TLS CA 2024 Q2 | 4/9/2024 | 5/11/2025 | 1 year 1 month 1 day |
www.google.com WR2 | 8/26/2024 | 11/18/2024 | 2 months 23 days |
*.google-analytics.com WR2 | 8/26/2024 | 11/18/2024 | 2 months 23 days |
*.gstatic.com WR2 | 8/26/2024 | 11/18/2024 | 2 months 23 days |
ingest.sentry.io DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 11/2/2023 | 12/2/2024 | 1 year 1 month 1 day |
*.spotify.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 2/5/2024 | 2/4/2025 | 1 year |
cookielaw.org WE1 | 8/13/2024 | 11/11/2024 | 3 months |
geolocation.onetrust.com WE1 | 8/13/2024 | 11/11/2024 | 3 months |
*.wg.spotify.com DigiCert Global G2 TLS RSA SHA256 2020 CA1 | 1/29/2024 | 1/28/2025 | 1 year |
HTTP Headers
HTTP Header
An HTTP header is a component of an HTTP request or response that contains additional information about the message being sent or received.
Name | Value |
---|---|
accept-ranges | bytes |
content-encoding | gzip |
content-security-policy | script-src 'self' 'unsafe-eval' blob: open.spotifycdn.com open-review.spotifycdn.com quicksilver.scdn.co www.google-analytics.com www.googletagmanager.com static.ads-twitter.com analytics.twitter.com s.pinimg.com sc-static.net https://www.google.com/recaptcha/ cdn.ravenjs.com connect.facebook.net www.gstatic.com sb.scorecardresearch.com pixel-static.spotify.com cdn.cookielaw.org geolocation.onetrust.com www.googleoptimize.com www.fastly-insights.com static.hotjar.com script.hotjar.com https://www.googleadservices.com/pagead/conversion_async.js https://www.googleadservices.com/pagead/conversion/ https://analytics.tiktok.com/i18n/pixel/sdk.js https://analytics.tiktok.com/i18n/pixel/identify.js https://analytics.tiktok.com/i18n/pixel/config.js https://www.redditstatic.com/ads/pixel.js https://t.contentsquare.net/uxa/22f14577e19f3.js 'sha256-WfsTi7oVogdF9vq5d14s2birjvCglqWF842fyHhzoNw=' 'sha256-KRzjHxCdT8icNaDOqPBdY0AlKiIh5F8r4bnbe1PQwss=' 'sha256-Z5wh7XXSBR1+mTxLSPFhywCZJt77+uP1GikAgPIsu2s='; frame-ancestors 'self' https://adgen-dev.spotify.com/account/*/ad/*/details https://adgen-dev.spotify.com/preview/* https://ads-voltron-ui-*.slingshot-instance.spotify.net/account/*/ad/*/details https://ads-voltron-ui-*.slingshot-instance.spotify.net/preview/* https://local.spotify.net/account/*/ad/*/details https://local.spotify.net/preview/*; |
content-type | text/html; charset=utf-8 |
date | Wed, 02 Oct 2024 04:07:28 GMT |
server | envoy |
strict-transport-security | max-age=31536000 |
vary | Accept-Encoding,Accept-Encoding |
via | HTTP/1.1 fringe, HTTP/2 edgeproxy, 1.1 google, 1.1 varnish, 1.1 varnish |
x-cache | MISS, MISS |
x-cache-hits | 0, 0 |
x-content-type-options | nosniff |
x-envoy-upstream-service-time | 274 |
x-served-by | cache-mad2200103-MAD, cache-mad2200103-MAD |
x-timer | S1727842049.655207,VS0,VE312 |
Content Security Policy
Content Security Policy (CSP) is a security mechanism that helps prevent cross-site scripting (XSS) and other code injection attacks by specifying which content sources are allowed to be loaded on a web page.
Name | Value |
---|---|
script-src | 'self''unsafe-eval'blob:open.spotifycdn.comopen-review.spotifycdn.comquicksilver.scdn.cowww.google-analytics.comwww.googletagmanager.comstatic.ads-twitter.comanalytics.twitter.coms.pinimg.comsc-static.nethttps://www.google.com/recaptcha/cdn.ravenjs.comconnect.facebook.netwww.gstatic.comsb.scorecardresearch.compixel-static.spotify.comcdn.cookielaw.orggeolocation.onetrust.comwww.googleoptimize.comwww.fastly-insights.comstatic.hotjar.comscript.hotjar.comhttps://www.googleadservices.com/pagead/conversion_async.jshttps://www.googleadservices.com/pagead/conversion/https://analytics.tiktok.com/i18n/pixel/sdk.jshttps://analytics.tiktok.com/i18n/pixel/identify.jshttps://analytics.tiktok.com/i18n/pixel/config.jshttps://www.redditstatic.com/ads/pixel.jshttps://t.contentsquare.net/uxa/22f14577e19f3.js'sha256-WfsTi7oVogdF9vq5d14s2birjvCglqWF842fyHhzoNw=''sha256-KRzjHxCdT8icNaDOqPBdY0AlKiIh5F8r4bnbe1PQwss=''sha256-Z5wh7XXSBR1+mTxLSPFhywCZJt77+uP1GikAgPIsu2s=' |
frame-ancestors | 'self'https://adgen-dev.spotify.com/account/*/ad/*/detailshttps://adgen-dev.spotify.com/preview/*https://ads-voltron-ui-*.slingshot-instance.spotify.net/account/*/ad/*/detailshttps://ads-voltron-ui-*.slingshot-instance.spotify.net/preview/*https://local.spotify.net/account/*/ad/*/detailshttps://local.spotify.net/preview/* |
Cookies
Cookies are small pieces of data stored on a user's web browser to track and remember information about their browsing activity on a website.
Name | Value | Domain/Path | Expires | Secure | HTTP Only |
---|---|---|---|---|---|
sp_t | 3381a0f0b2f97aa159ecb67d034f8b8d | .spotify.com/ | 10/2/2025, 4:07:28 AM | yes | no |
sp_landing | https%3A%2F%2Fopen.spotify.com%2Fshow%2F06ONc8stRi7YIYvgkSsdLe%3Fsp_cid%3D3381a0f0b2f97aa159ecb67d034f8b8d%26device%3Ddesktop | .spotify.com/ | 10/3/2024, 4:07:11 AM | yes | yes |
_gcl_au | 1.1.1241922628.1727842037 | .spotify.com/ | 12/31/2024, 4:07:17 AM | no | no |