5. Client-Server workflow
• Open a TCP connection
• Send HTTP request
5
https://developer.mozilla.org/en-US/docs/Web/HTTP/Overview
6. Client-Server workflow(cont.)
• Read the response sent by the server
• Close or reuse the connection for further requests
6
https://developer.mozilla.org/en-US/docs/Web/HTTP/Overview
11. HTTP headers
• End-to-end headers
• These headers must be transmitted to the final
recipient of the message
• Hop-by-hop headers
• These headers are meaningful only for a single
transport-level connection, and must not be
retransmitted by proxies or cached.
11
17. A few headers(cont.)
Cookies
• Cookie: <cookie-list>
• Set-Cookie: <cookie-name>=<cookie-value>
17
https://medium.com/@piraveenaparalogarajah/sessions-and-cookies-
2c0919552f29
18. A few headers(cont.)
CORS
• Access-Control-Allow-Origin
• Access-Control-Allow-Credentials
• Access-Control-Allow-Methods
• Access-Control-Allow-Headers
Security
• Content-Security-Policy
• Expect-CT
• Strict-Transport-Security (HSTS)
18