Server | nginx/1.12.2 |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
Status | 200 OK |
ETag | W/"fa99b2a6640d411bdff8e2ee16ef5ee1" |
Cache-Control | max-age=300 |
X-Request-Id | 47d69f351eead8455ca17fcae8269983 |
X-Runtime | 0.124831 |
X-Rack-Cache | miss |
Expires | Sun, 18 Feb 2018 14:13:29 GMT |
X-UA-Compatible | IE=Edge,chrome=1, IE=edge |
X-Frame-Options | SAMEORIGIN |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Strict-Transport-Security | max-age=31536000; includeSubdomains; |
Content-Security-Policy | default-src 'self'; connect-src 'self' http://www.angelflowers.com.au http://*.hotjar.com:* https://*.hotjar.com:* ws://*.hotjar.com wss://*.hotjar.com sumome.com *.kxcdn.com *.zopim.com wss://*.zopim.com https://translate.googleapis.com https://r13---sn-ntq7en7y.googlevideo.com https://www.youtube.com https://youtube.com http://youtube.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' *.facebook.com https://ajax.googleapis.com https://trkcall.com http://*.hotjar.com https://*.hotjar.com https://tagmanager.google.com https://s.adroll.com *.sumome.com *.googlecommerce.com *.googlecommerce.com *.kxcdn.com *.gtp.com.au http://tracking.gtp.com.au https://tracking.gtp.com.au *.zopim.com *.addthis.com http://static.mobilewebsiteserver.com https://translate.googleapis.com static.tacdn.com *.vimeo.com *.tripadvisor.com http://www.jscache.com *.facebook.net *.googletagmanager.com *.twitter.com http://platform.linkedin.com https://platform.linkedin.com http://www.jscache.com http://translate.google.com http://www.gstatic.com/ *.pinterest.com *.weatherzone.com.au http://rtsys.rtrk.com.au http://d.adroll.com http://www.youtube.com *.googleadservices.com http://www.googleadservices.com http://a.adroll.com http://vxml4.plavxml.com http://vxml4.plavxml.com.au *.pinterest.com *.angelflowers.com.au *.gtp-icommerce.com.au/ https://ssl.google-analytics.com *.google-analytics.com https://assets.zendesk.com *.facebook.net; img-src 'self' data: https://loremflickr.com *.kxcdn.com http://*.hotjar.com https://*.hotjar.com https://d.adroll.com https://ads.yahoo.com https://x.bidswitch.net https://us-u.openx.net https://ib.adnxs.com https://idsync.rlcdn.com https://cms.gtp-icommerce.com.au http://cms.gtp-icommerce.com.au *.gtp.com.au *.zopim.com *.addthis.com *.vimeo.com *.twitter.com *.crossfit.com *.doubleclick.net *.static.tacdn.com *.tripadvisor.com https://translate.googleapis.com *.google.com *.google.com.au https://www.gstatic.com https://www.paypalobjects.com *.www.paypalobjects.com http://www.semrush.com https://ssl.gstatic.com *.pinterest.com https://s-passets.pinimg.com *.twitter.com https://plus.google.com http://maps.googleapis.com https://maps.googleapis.com http://data.weatherzone.com.au http://wz5.resources.weatherzone.com.au http://rtsys.rtrk.com.au *.google-analytics.com *.pinterest.com *.angelflowers.com.au http://vsrv1assets2.gtp.com.au http://vsrv1assets1.gtp.com.au cms.gtp-icommerce.com.au https://ssl.google-analytics.com *.facebook.com https://assets.zendesk.com *.googleadservices.com; style-src 'self' 'unsafe-inline' https://tagmanager.google.com *.kxcdn.com *.addthis.com *.vimeo.com *.tripadvisor.com static.tacdn.com https://translate.googleapis.com *.angelflowers.com.au http://assets1.angelflowers.com.au http://fonts.googleapis.com/ https://fonts.googleapis.com https://assets.zendesk.com; font-src 'self' data: http://*.hotjar.com https://*.hotjar.com *.kxcdn.com *.zopim.com https://fonts.gstatic.com http://fonts.gstatic.com *.angelflowers.com.au https://themes.googleusercontent.com; child-src 'self' https://widgets-code.websta.me https://payway.feesynergy.com.au https://*.hotjar.com *.googlecommerce.com *.googlecommerce.com *.kxcdn.com *.audioacrobat.com *.renewtrust.com *.addthis.com *.vimeo.com http://brightgreen.com https://brightgreen.com *.tripadvisor.com *.facebook.com *.facebook.com https://app.wodify.com *.googletagmanager.com *.twitter.com http://platform.linkedin.com https://platform.linkedin.com http://maps.google.com.au https://maps.google.com.au https://www.google.com http://www.google.com http://www.google.com.au http://googleads.g.doubleclick.net https://www.youtube.com http://www.youtube.com https://assets.zendesk.com *.facebook.com *.facebook.com https://tautt.zendesk.com; object-src 'self' https://*.hotjar.com *.kxcdn.com *.zopim.com *.googletagmanager.com *.twitter.com http://platform.linkedin.com https://platform.linkedin.com *.gtp-icommerce.com.au https://www.youtube.com http://www.youtube.com http://youtube.com |
Access-Control-Allow-Origin | http://www.angelflowers.com.au http://assets1.angelflowers.com.au |
Content-Encoding | gzip |