P3P | CP="Facebook does not have a P3P policy. Learn why here: http://fb.me/p3p" |
X-Frame-Options | DENY |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 0 |
Strict-Transport-Security | max-age=15552000; preload |
Public-Key-Pins-Report-Only | max-age=500; pin-sha256="WoiWRyIOVNa9ihaBciRSC7XHjliYS9VwUGOIud4PB18="; pin-sha256="r/mIkG3eEpVdm+u/ko/cwxzOMo1bk4TyHIlByibiA5E="; pin-sha256="q4PO2G2cbkZhZ82+JgmRUyGMoAeozA+BSXVXQWB8XWQ="; report-uri="http://reports.fb.com/hpkp/" |
Pragma | no-cache |
Content-Security-Policy | default-src * data: blob:;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.virtualearth.net *.google.com 127.0.0.1:* *.spotilocal.com:* 'unsafe-inline' 'unsafe-eval' fbstatic-a.akamaihd.net fbcdn-static-b-a.akamaihd.net *.atlassolutions.com blob:;style-src * 'unsafe-inline' data:;connect-src *.facebook.com *.fbcdn.net *.facebook.net *.spotilocal.com:* *.akamaihd.net wss://*.facebook.com:* https://fb.scanandcleanlocal.com:* *.atlassolutions.com attachment.fbsbx.com blob:; |
Cache-Control | private, no-cache, no-store, must-revalidate |
Expires | Sat, 01 Jan 2000 00:00:00 GMT |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Content-Type | text/html |
X-FB-Debug | FzBHvnlwX2pL982QWAcUpQ3/OUk1zDDq2j+UNzw++fe8uyRfpyF/b//KiGvzOFc7G5UsM5GQYd7hYysVAAuaUQ== |
Transfer-Encoding | chunked |
Connection | keep-alive |