foodbycoor.se

HTML metadata

Title

Food by Coor restauranger i Sverige

Description

Vi på Food by Coor driver restauranger på arbetsplatser runtom i Sverige. Varmt välkommen att kika in!

Language

sv

Canonical

https://www.foodbycoor.se/

Translations

en
sv

Open Graph

url: https://www.foodbycoor.se/
title: Food by Coor restauranger i Sverige
locale: sv
description: Vi på Food by Coor driver restauranger på arbetsplatser runtom i Sverige. Varmt välkommen att kika in!
locale:alternate: en

Technology

CDN: Cloudflare

Analytics

Google Tag Manager

Third-party hosts loaded (2)

dc.services.visualstudio.com×1
www.googletagmanager.com×1

DNS records live

NS

dns1.zaccodigitaltrustlabs.com
dns2.zaccodigitaltrustlabs.net
dns3.zaccodigitaltrustlabs.se
dns4.zaccodigitaltrustlabs.se
ns1.zaccodns.com
ns2.zaccodns.se

TXT

Show 4 TXT records

6jkrmh41k8k7kyq3gmj2f9bznb2sj3fk
86nj83fcy15790d8c35b9lr31d0yx5fd
fpj24b8k3j63kbw5kyzddwv4j3tw4fsv
x92pyf0q6pqh6k1tz050y47ql4m9kt2h

Verified for

Microsoft 365

Email authentication no MX

SPF

v=spf1 -all

strict (-all)

DMARC

v=DMARC1; p=reject;

policy: reject (enforced)

DKIM

Show 12 DKIM selectors

default: v=DKIM1; p=
google: v=DKIM1; p=
selector1: v=DKIM1; p=
selector2: v=DKIM1; p=
k1: v=DKIM1; p=
k2: v=DKIM1; p=
mail: v=DKIM1; p=
dkim: v=DKIM1; p=
s1: v=DKIM1; p=
s2: v=DKIM1; p=
mxvault: v=DKIM1; p=
smtpapi: v=DKIM1; p=

selectors probed

Certificate (current)

WE1

from 2026-05-28 to 2026-08-26

Expires in 87 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.foodbycoor.se/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: same-origin
x-frame-options: SAMEORIGIN
permissions-policy: publickey-credentials-get=(), xr-spatial-tracking=(), screen-wake-lock=(), cross-origin-isolated=(), web-share=(), picture-in-picture=(), keyboard-map=(), encrypted-media=(), display-capture=(), usb=(), serial=(), payment=(), midi=(), microphone=(), magnetometer=(), geolocation=(), camera=(), fullscreen=(), autoplay=(), accelerometer=()
x-content-type-options: nosniff
content-security-policy: report-uri https://www.coor.com/report-endpoints/report; report-to report-endpoint; script-src https://*.cookiebot.com https://*.lifeinside.io https://tracker.leadenhancer.com https://adsby.bidtheatre.com https://snap.licdn.com https://www.google.com https://googleads.g.doubleclick.net https://www.gstatic.com https://www.googleadservices.com https://*.hotjar.com https://js-eu1.hs-scripts.com https://js-eu1.hsleadflows.net https://js-eu1.hs-banner.com https://js-eu1.hs-analytics.net https://js-eu1.hubspot.com https://js-eu1.usemessages.com https://bat.bing.com https://connect.facebook.net https://cdn.ontame.io https://*.inzynk.io https://*.livechatinc.com https://www.juicer.io https://widget.datablocks.se https://js.monitor.azure.com https://*.optimizely.com https://optimizely.s3.amazonaws.com https://cdn-assets-prod.s3.amazonaws.com 'self' https://*.googletagmanager.com https://www.googletagmanager.com 'unsafe-inline'; frame-src https://consentcdn.cookiebot.com https://www.google.com h
strict-transport-security: max-age=31536000; includeSubDomains; preload