joa.fr

HTML metadata

Title: JOA - Casinos Jeux & Loisirs : Black Jack, Poker, Machines à Sous, Restaurants, Spectacles | JOA
Description: Bienvenue dans un nouveau monde de loisirs : Jouer, Oser, s'Amuser ! 33 casinos, 34 restaurants, 44 bars et de nombreuses activités de loisirs
Language: fr
Canonical: https://www.joa.fr/

Open Graph

url: https://www.joa.fr/
locale: fr_FR
site name: JOA.FR - Casino, Jeux & Loisirs
description: <p>Découvrez les établissements du Groupe JOA ! De nombreux casinos de jeux en France proposant aussi des loisirs pour se détendre entre amis, en famille*... Laissez-vous surprendre !<br><br>*Certaines parties du casino, comme les salles de jeux sont réservées aux personnes majeures.</p>

Technology

CDN: Cloudflare

Analytics

Cloudflare Insights
Google Tag Manager

Cookie consent

Cookiebot

Third-party hosts loaded (5)

consent.cookiebot.com×1
s.ytimg.com×1
static.cloudflareinsights.com×1
www.googletagmanager.com×1
www.youtube.com×1

Social

Contact

Phone

09 74 75 13 13

Registration

Registrar

NAMEBAY

Created

2009-07-03

Expires

2027-08-03 441 days left

Updated

2026-04-18

Name servers

elisa.ns.cloudflare.com
memphis.ns.cloudflare.com

DNS records live

NS

elisa.ns.cloudflare.com
memphis.ns.cloudflare.com

MX

0 joa-fr.mail.protection.outlook.com

TXT

Show 8 TXT records

MS=ms69221289
_globalsign-domain-verification=EB9tyzjsRjpQhbupJzv0V3jUTBJNGiMn1yxQhr4f1d
apple-domain-verification=ZKCqoHd0TMEyWxaP
asn-verification=aefe09a8e2e440edba2402ef6b6622cd7d6df3ae17a5d535fe951c82622cde7d
atlassian-domain-verification=tYNiBLeCu689zXifvMSE3GRQjN27DhFyHbPOa3NyRuP6tEHUAcFkav9z9wRhOGII
facebook-domain-verification=wdn1j5pl0rfw2zn0oqpkqvmufhzx3g
google-site-verification=uad-3GwcYEgqESzy6rv_7suX4y8-b3c4fNTNv_1zAqs
google-site-verification=ufqfhen71vBzuaytC4gg19dS5QCcXoVOvb_dzLT5EIo

Email authentication strong

SPF

v=spf1 a ip4:195.28.200.105 ip4:78.153.224.89 include:spf.protection.outlook.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none; rua=mailto:971b7d298b074d0b8ce2d47aa73792c1@dmarc-reports.cloudflare.net,mailto:dmarc_reporting@joa.fr; ruf=mailto:dmarc_reporting@joa.fr; fo=0; adkim=s; aspf=s

policy: none (monitoring only)

DKIM

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApadukNMLj2mdkwsRuq6JnSCpb9WIQgTPzJ9mCmVAv3dRSlutAcLK+GLBTOhsPT/+ddU8exN3PF368W…

selectors probed

Certificate (current)

WE1

from 2026-03-22 to 2026-06-20

Expires in 32 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.joa.fr/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy

findings

CSP uses wildcard sources
missing Permissions Policy

Header values

referrer-policy: no-referrer, strict-origin-when-cross-origin
x-frame-options: DENY
x-content-type-options: nosniff
content-security-policy: default-src 'self'; base-uri 'none'; connect-src 'self' www.google-analytics.com *.analytics.google.com *.google-analytics.com wss://www.joa.fr stats.g.doubleclick.net maps.googleapis.com www.novaresa.net www.joa.fr consentcdn.cookiebot.com consent.cookiebot.com www.facebook.com cxppusa1formui01cdnsa01-endpoint.azureedge.net *.dynamics.com; font-src 'self' data:; frame-ancestors https://enplug.com https://*.enplug.com cxppusa1formui01cdnsa01-endpoint.azureedge.net; frame-src 'self' www.youtube.com www.youtube-nocookie.com www.googletagmanager.com module.lafourchette.com widget.thefork.com *.weezevent.com ubishaker.com t.regionsjob.com *.gaming1.com www.google.com widget.fanzo.com www.facebook.com consentcdn.cookiebot.com *.paperform.co; img-src 'self' www.googletagmanager.com media.joa.fr www.google-analytics.com ytimg.com i.ytimg.com img.youtube.com www.facebook.com www.google.com www.google.fr maps.googleapis.com *.gstatic.com data: blob: www.novaresa.net novaresa.net icons.batch.com
strict-transport-security: max-age=15552000; includeSubDomains; preload