1. headers http header: cross-origin-opener-policy

2. headers http header: cross-origin-opener-policy: noopener-allow-popups support

3. headers http header: cross-origin-opener-policy: `report-to` parameter