40CreateHeaderField(":authority", ""), // 0 41CreateHeaderField(":path", "/"), // 1 42CreateHeaderField("age", "0"), // 2 43CreateHeaderField("content-disposition", ""), //3 44CreateHeaderField("content-length", "0"), // 4 45CreateHeaderField("cookie", ""), // 5 46CreateHeaderField("date", ""), // 6 47CreateHeaderField("etag", ""), // 7 48CreateHeaderField("if-modified-since", ""), // 8 49CreateHeaderField("if-none-match", ""), // 9 50CreateHeaderField("last-modified", ""), // 10 51CreateHeaderField("link", ""), // 11 52CreateHeaderField("location", ""), // 12 53CreateHeaderField("referer", ""), // 13 54CreateHeaderField("set-cookie", ""), // 14 55CreateHeaderField(":method", "CONNECT"), // 15 56CreateHeaderField(":method", "DELETE"), // 16 57CreateHeaderField(":method", "GET"), // 17 58CreateHeaderField(":method", "HEAD"), // 18 59CreateHeaderField(":method", "OPTIONS"), // 19 60CreateHeaderField(":method", "POST"), // 20 61CreateHeaderField(":method", "PUT"), // 21 62CreateHeaderField(":scheme", "http"), // 22 63CreateHeaderField(":scheme", "https"), // 23 64CreateHeaderField(":status", "103"), // 24 65CreateHeaderField(":status", "200"), // 25 66CreateHeaderField(":status", "304"), // 26 67CreateHeaderField(":status", "404"), // 27 68CreateHeaderField(":status", "503"), // 28 69CreateHeaderField("accept", "*/*"), //29 70CreateHeaderField("accept", "application/dns-message"), // 30 71CreateHeaderField("accept-encoding", "gzip, deflate, br"), // 31 72CreateHeaderField("accept-ranges", "bytes"), // 32 73CreateHeaderField("access-control-allow-headers", "cache-control"), // 33 74CreateHeaderField("access-control-allow-headers", "content-type"), // 34 75CreateHeaderField("access-control-allow-origin", "*"), // 35 76CreateHeaderField("cache-control", "max-age=0"), // 36 77CreateHeaderField("cache-control", "max-age=2592000"), // 37 78CreateHeaderField("cache-control", "max-age=604800"), // 38 79CreateHeaderField("cache-control", "no-cache"), // 39 80CreateHeaderField("cache-control", "no-store"), // 40 81CreateHeaderField("cache-control", "public, max-age=31536000"), // 41 82CreateHeaderField("content-encoding", "br"), // 42 83CreateHeaderField("content-encoding", "gzip"), // 43 84CreateHeaderField("content-type", "application/dns-message"), // 44 85CreateHeaderField("content-type", "application/javascript"), // 45 86CreateHeaderField("content-type", "application/json"), // 46 87CreateHeaderField("content-type", "application/x-www-form-urlencoded"), // 47 88CreateHeaderField("content-type", "image/gif"), // 48 89CreateHeaderField("content-type", "image/jpeg"), // 49 90CreateHeaderField("content-type", "image/png"), // 50 91CreateHeaderField("content-type", "text/css"), // 51 92CreateHeaderField("content-type", "text/html; charset=utf-8"), // 52 93CreateHeaderField("content-type", "text/plain"), // 53 94CreateHeaderField("content-type", "text/plain;charset=utf-8"), // 54 95CreateHeaderField("range", "bytes=0-"), // 55 96CreateHeaderField("strict-transport-security", "max-age=31536000"), // 56 97CreateHeaderField("strict-transport-security", "max-age=31536000; includesubdomains"), // 57; TODO confirm spaces here don't matter? 98CreateHeaderField("strict-transport-security", "max-age=31536000; includesubdomains; preload"), // 58 99CreateHeaderField("vary", "accept-encoding"), // 59 100CreateHeaderField("vary", "origin"), // 60 101CreateHeaderField("x-content-type-options", "nosniff"), // 61 102CreateHeaderField("x-xss-protection", "1; mode=block"), // 62 103CreateHeaderField(":status", "100"), // 63 104CreateHeaderField(":status", "204"), // 64 105CreateHeaderField(":status", "206"), // 65 106CreateHeaderField(":status", "302"), // 66 107CreateHeaderField(":status", "400"), // 67 108CreateHeaderField(":status", "403"), // 68 109CreateHeaderField(":status", "421"), // 69 110CreateHeaderField(":status", "425"), // 70 111CreateHeaderField(":status", "500"), // 71 112CreateHeaderField("accept-language", ""), // 72 113CreateHeaderField("access-control-allow-credentials", "FALSE"), // 73 114CreateHeaderField("access-control-allow-credentials", "TRUE"), // 74 115CreateHeaderField("access-control-allow-headers", "*"), // 75 116CreateHeaderField("access-control-allow-methods", "get"), // 76 117CreateHeaderField("access-control-allow-methods", "get, post, options"), // 77 118CreateHeaderField("access-control-allow-methods", "options"), // 78 119CreateHeaderField("access-control-expose-headers", "content-length"), // 79 120CreateHeaderField("access-control-request-headers", "content-type"), // 80 121CreateHeaderField("access-control-request-method", "get"), // 81 122CreateHeaderField("access-control-request-method", "post"), // 82 123CreateHeaderField("alt-svc", "clear"), // 83 124CreateHeaderField("authorization", ""), // 84 125CreateHeaderField("content-security-policy", "script-src 'none'; object-src 'none'; base-uri 'none'"), // 85 126CreateHeaderField("early-data", "1"), // 86 127CreateHeaderField("expect-ct", ""), // 87 128CreateHeaderField("forwarded", ""), // 88 129CreateHeaderField("if-range", ""), // 89 130CreateHeaderField("origin", ""), // 90 131CreateHeaderField("purpose", "prefetch"), // 91 132CreateHeaderField("server", ""), // 92 133CreateHeaderField("timing-allow-origin", "*"), // 93 134CreateHeaderField("upgrade-insecure-requests", "1"), // 94 135CreateHeaderField("user-agent", ""), // 95 136CreateHeaderField("x-forwarded-for", ""), // 96 137CreateHeaderField("x-frame-options", "deny"), // 97 138CreateHeaderField("x-frame-options", "sameorigin"), // 98