55CreateHeaderField(":authority", ""), // 0 56CreateHeaderField(":path", "/"), // 1 57CreateHeaderField("age", "0"), // 2 58CreateHeaderField("content-disposition", ""), //3 59CreateHeaderField("content-length", "0"), // 4 60CreateHeaderField("cookie", ""), // 5 61CreateHeaderField("date", ""), // 6 62CreateHeaderField("etag", ""), // 7 63CreateHeaderField("if-modified-since", ""), // 8 64CreateHeaderField("if-none-match", ""), // 9 65CreateHeaderField("last-modified", ""), // 10 66CreateHeaderField("link", ""), // 11 67CreateHeaderField("location", ""), // 12 68CreateHeaderField("referer", ""), // 13 69CreateHeaderField("set-cookie", ""), // 14 70CreateHeaderField(":method", "CONNECT"), // 15 71CreateHeaderField(":method", "DELETE"), // 16 72CreateHeaderField(":method", "GET"), // 17 73CreateHeaderField(":method", "HEAD"), // 18 74CreateHeaderField(":method", "OPTIONS"), // 19 75CreateHeaderField(":method", "POST"), // 20 76CreateHeaderField(":method", "PUT"), // 21 77CreateHeaderField(":scheme", "http"), // 22 78CreateHeaderField(":scheme", "https"), // 23 79CreateHeaderField(":status", "103"), // 24 80CreateHeaderField(":status", "200"), // 25 81CreateHeaderField(":status", "304"), // 26 82CreateHeaderField(":status", "404"), // 27 83CreateHeaderField(":status", "503"), // 28 84CreateHeaderField("accept", "*/*"), //29 85CreateHeaderField("accept", "application/dns-message"), // 30 86CreateHeaderField("accept-encoding", "gzip, deflate, br"), // 31 87CreateHeaderField("accept-ranges", "bytes"), // 32 88CreateHeaderField("access-control-allow-headers", "cache-control"), // 33 89CreateHeaderField("access-control-allow-headers", "content-type"), // 34 90CreateHeaderField("access-control-allow-origin", "*"), // 35 91CreateHeaderField("cache-control", "max-age=0"), // 36 92CreateHeaderField("cache-control", "max-age=2592000"), // 37 93CreateHeaderField("cache-control", "max-age=604800"), // 38 94CreateHeaderField("cache-control", "no-cache"), // 39 95CreateHeaderField("cache-control", "no-store"), // 40 96CreateHeaderField("cache-control", "public, max-age=31536000"), // 41 97CreateHeaderField("content-encoding", "br"), // 42 98CreateHeaderField("content-encoding", "gzip"), // 43 99CreateHeaderField("content-type", "application/dns-message"), // 44 100CreateHeaderField("content-type", "application/javascript"), // 45 101CreateHeaderField("content-type", "application/json"), // 46 102CreateHeaderField("content-type", "application/x-www-form-urlencoded"), // 47 103CreateHeaderField("content-type", "image/gif"), // 48 104CreateHeaderField("content-type", "image/jpeg"), // 49 105CreateHeaderField("content-type", "image/png"), // 50 106CreateHeaderField("content-type", "text/css"), // 51 107CreateHeaderField("content-type", "text/html; charset=utf-8"), // 52 108CreateHeaderField("content-type", "text/plain"), // 53 109CreateHeaderField("content-type", "text/plain;charset=utf-8"), // 54 110CreateHeaderField("range", "bytes=0-"), // 55 111CreateHeaderField("strict-transport-security", "max-age=31536000"), // 56 112CreateHeaderField("strict-transport-security", "max-age=31536000; includesubdomains"), // 57; TODO confirm spaces here don't matter? 113CreateHeaderField("strict-transport-security", "max-age=31536000; includesubdomains; preload"), // 58 114CreateHeaderField("vary", "accept-encoding"), // 59 115CreateHeaderField("vary", "origin"), // 60 116CreateHeaderField("x-content-type-options", "nosniff"), // 61 117CreateHeaderField("x-xss-protection", "1; mode=block"), // 62 118CreateHeaderField(":status", "100"), // 63 119CreateHeaderField(":status", "204"), // 64 120CreateHeaderField(":status", "206"), // 65 121CreateHeaderField(":status", "302"), // 66 122CreateHeaderField(":status", "400"), // 67 123CreateHeaderField(":status", "403"), // 68 124CreateHeaderField(":status", "421"), // 69 125CreateHeaderField(":status", "425"), // 70 126CreateHeaderField(":status", "500"), // 71 127CreateHeaderField("accept-language", ""), // 72 128CreateHeaderField("access-control-allow-credentials", "FALSE"), // 73 129CreateHeaderField("access-control-allow-credentials", "TRUE"), // 74 130CreateHeaderField("access-control-allow-headers", "*"), // 75 131CreateHeaderField("access-control-allow-methods", "get"), // 76 132CreateHeaderField("access-control-allow-methods", "get, post, options"), // 77 133CreateHeaderField("access-control-allow-methods", "options"), // 78 134CreateHeaderField("access-control-expose-headers", "content-length"), // 79 135CreateHeaderField("access-control-request-headers", "content-type"), // 80 136CreateHeaderField("access-control-request-method", "get"), // 81 137CreateHeaderField("access-control-request-method", "post"), // 82 138CreateHeaderField("alt-svc", "clear"), // 83 139CreateHeaderField("authorization", ""), // 84 140CreateHeaderField("content-security-policy", "script-src 'none'; object-src 'none'; base-uri 'none'"), // 85 141CreateHeaderField("early-data", "1"), // 86 142CreateHeaderField("expect-ct", ""), // 87 143CreateHeaderField("forwarded", ""), // 88 144CreateHeaderField("if-range", ""), // 89 145CreateHeaderField("origin", ""), // 90 146CreateHeaderField("purpose", "prefetch"), // 91 147CreateHeaderField("server", ""), // 92 148CreateHeaderField("timing-allow-origin", "*"), // 93 149CreateHeaderField("upgrade-insecure-requests", "1"), // 94 150CreateHeaderField("user-agent", ""), // 95 151CreateHeaderField("x-forwarded-for", ""), // 96 152CreateHeaderField("x-frame-options", "deny"), // 97 153CreateHeaderField("x-frame-options", "sameorigin"), // 98