Server | Apache |
X-Powered-By | PHP/5.4.16 |
Expires | Sun, 19 Nov 1978 05:00:00 GMT |
Cache-Control | no-cache, must-revalidate, post-check=0, pre-check=0 |
Content-Security-Policy | default-src 'none'; script-src 'unsafe-eval' 'unsafe-inline' 'self' https://www.google.com http://www.google.com https://www.google-analytics.com/analytics.js; object-src 'unsafe-eval' 'unsafe-inline' 'self'; style-src 'unsafe-inline' 'self'; img-src 'unsafe-inline' 'self' https://developer.android.com https://itunes.apple.com https://www.google.com https://translate.googeapis.com https://www.google-analytics.com; media-src 'unsafe-inline' 'self'; frame-src 'unsafe-inline' 'self' https://www.youtube.com https://maps.google.com https://www.google.com https://www.1stnb.apply2jobs.com; font-src 'unsafe-inline' 'self'; connect-src 'self' http://api.clickatell.com/soap/webservice.php https://web-rt:443/cardactivation/soap_server.php https://web-rt:443/cardactivation/soap_server.php?wsdl; report-uri /admin/config/system/seckit/csp-report |
X-Content-Security-Policy | default-src 'none'; script-src 'unsafe-eval' 'unsafe-inline' 'self' https://www.google.com http://www.google.com https://www.google-analytics.com/analytics.js; object-src 'unsafe-eval' 'unsafe-inline' 'self'; style-src 'unsafe-inline' 'self'; img-src 'unsafe-inline' 'self' https://developer.android.com https://itunes.apple.com https://www.google.com https://translate.googeapis.com https://www.google-analytics.com; media-src 'unsafe-inline' 'self'; frame-src 'unsafe-inline' 'self' https://www.youtube.com https://maps.google.com https://www.google.com https://www.1stnb.apply2jobs.com; font-src 'unsafe-inline' 'self'; connect-src 'self' http://api.clickatell.com/soap/webservice.php https://web-rt:443/cardactivation/soap_server.php https://web-rt:443/cardactivation/soap_server.php?wsdl; report-uri /admin/config/system/seckit/csp-report |
X-WebKit-CSP | default-src 'none'; script-src 'unsafe-eval' 'unsafe-inline' 'self' https://www.google.com http://www.google.com https://www.google-analytics.com/analytics.js; object-src 'unsafe-eval' 'unsafe-inline' 'self'; style-src 'unsafe-inline' 'self'; img-src 'unsafe-inline' 'self' https://developer.android.com https://itunes.apple.com https://www.google.com https://translate.googeapis.com https://www.google-analytics.com; media-src 'unsafe-inline' 'self'; frame-src 'unsafe-inline' 'self' https://www.youtube.com https://maps.google.com https://www.google.com https://www.1stnb.apply2jobs.com; font-src 'unsafe-inline' 'self'; connect-src 'self' http://api.clickatell.com/soap/webservice.php https://web-rt:443/cardactivation/soap_server.php https://web-rt:443/cardactivation/soap_server.php?wsdl; report-uri /admin/config/system/seckit/csp-report |
X-XSS-Protection | 0 |
X-Frame-Options | SameOrigin |
Strict-Transport-Security | max-age=1000 |
Content-Language | en |
X-Generator | Drupal 7 (http://drupal.org) |
Connection | close |
Content-Type | text/html; charset=utf-8 |
Content-Length | 60865 |