W3cubDocs

/HTTP

Timing-Allow-Origin

The Timing-Allow-Origin response header specifies origins that are allowed to see values of attributes retrieved via features of the Resource Timing API, which would otherwise be reported as zero due to cross-origin restrictions.

Syntax

Timing-Allow-Origin: *
Timing-Allow-Origin: <origin>[, <origin>]*

Directives

*
The server may specify "*" as a wildcard, thereby allowing any origin to see timing resources.
<origin>
Specifies a URI that may see the timing resources. You can specify multiple origins, separated by commas.

Examples

To allow any resource to see timing resources:

Timing-Allow-Origin: *

To allow https://developer.mozilla.org to see timing resources, you can specify:

Timing-Allow-Origin: https://developer.mozilla.org

Specifications

Specification Status Comment
Resource Timing Level 3
The definition of 'Timing-Allow-Origin' in that specification.
Editor's Draft Initial definition.

Browser compatibilityUpdate compatibility data on GitHub

Desktop
Chrome Edge Firefox Internet Explorer Opera Safari
Timing-Allow-Origin Yes ≤79 Yes ? Yes Yes
Mobile
Android webview Chrome for Android Firefox for Android Opera for Android Safari on iOS Samsung Internet
Timing-Allow-Origin Yes Yes Yes Yes Yes Yes

See also

© 2005–2020 Mozilla and individual contributors.
Licensed under the Creative Commons Attribution-ShareAlike License v2.5 or later.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Timing-Allow-Origin