Server | Awbox |
Content-Security-Policy | default-src *.awbox.co data:; script-src *.awbox.co *.facebook.net *.google.com *.twitter.com *.cloudflare.com *.jquery.com *.bootstrapcdn.com 'unsafe-inline'; style-src *.awbox.co *.gstatic.com *.cloudflare.com *.bootstrapcdn.com *.googleapis.com 'unsafe-inline'; connect-src *.awbox.co api.awbox.co 'unsafe-inline'; font-src *.awbox.co *.gstatic.com *.googleapis.com *.bootstrapcdn.com; frame-src player.vimeo.com *.youtube.com *.awbox.co *.facebook.com *.google.com *.twitter.com; img-src *.awbox.co *.facebook.com *.twitter.com *.gstatic.com data: |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Cache-Control | no-store, no-cache, must-revalidate, post-check=0, pre-check=0 |
Pragma | no-cache |
Content-Encoding | gzip |
Vary | Accept-Encoding,User-Agent |
X-Frame-Options | SAMEORIGIN |
Last-Modified | Mon, 06 Feb 2017 07:53:55 GMT |
Etag | d087ffe510cacebc036fe1526e3396e2 |
Connection | Keep-Alive, Keep-Alive |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Keep-Alive | timeout=5, max=100 |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=UTF-8 |