Request & Response Headers

EdgeWrap attaches specific headers to requests forwarded to your origin, and injects metrics and status headers into responses returned to clients.

Headers Forwarded to Your Origin

Your origin server can inspect these headers to gather metadata about client geolocation, original IP address, and proxy metrics.

HeaderDescriptionExample
X-Forwarded-ForThe original IP address of the client.203.0.113.195
X-EdgeWrap-Request-IDA unique identifier assigned to every incoming request. Useful for logs.req_01jxyzabc123
X-EdgeWrap-CountryTwo-letter country code of the client IP (ISO 3166-1 alpha-2).US
X-EdgeWrap-CityCity name of the client IP (when available).San Francisco
X-EdgeWrap-SignatureHMAC signature of the request body to verify authenticity. See Secret Shield.sha256=a5b6c...

Headers Returned to Clients

Clients receive status headers indicating if a request was served from edge cache, WAF decisions, and proxy latency.

HeaderDescriptionExample / Values
X-CacheIndicates if the request was cached.HIT | MISS | BYPASS
X-EdgeWrap-Time-MsTotal milliseconds spent inside EdgeWrap proxy processing rules and scripts.14
X-EdgeWrap-VersionVersion identifier of the edge node configuration.v2.1.0
Warning: To prevent headers spoofing, ensure your origin server validates that requests contain a valid X-EdgeWrap-Signature or only accepts requests originating from EdgeWrap IP ranges.