Server | nginx/1.8.0 |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
X-Powered-By | Express |
X-XSS-Protection | 1; mode=block |
X-FRAME-OPTIONS | SAMEORIGIN |
Strict-Transport-Security | max-age=31536000; includeSubDomains |
Content-Security-Policy | default-src 'self'; connect-src 'self' ws://*:* wss://*:* https://api.github.com https://www.youtube.com https://player.vimeo.com https://*.intercom.io https://uploads.intercomcdn.com; frame-src 'self' https://www.youtube.com https://player.vimeo.com https://js.stripe.com/v2/; font-src 'self' fonts.gstatic.com data:; style-src 'self' fonts.googleapis.com yui.yahooapis.com https://use.typekit.net 'unsafe-inline'; script-src 'self' browser-update.org https://*.cloudfront.net http://*.cloudfront.net https://*.google-analytics.com http://*.google-analytics.com https://www.googleadservices.com http://www.googleadservices.com http://localhost:35729 https://localhost:35729 https://widget.intercom.io/widget/tqlvijad https://js.intercomcdn.com/ https://js.stripe.com/v2/ https://bitbucket.org https://aui-cdn.atlassian.com https://use.typekit.net https://cdnjs.cloudflare.com https://platform.twitter.com https://connect.facebook.net data: 'unsafe-eval'; img-src 'self' data: https://*.google-analytics.com http://*.google-analytics.com https://www.google.ca https://www.google.de https://www.google.co.uk https://www.google.com https://*.doubleclick.net http://*.doubleclick.net https://www.googleadservices.com http://www.googleadservices.com https://*.githubusercontent.com http://*.githubusercontent.com https://*.cloudfront.net https://secure.gravatar.com https://i1.wp.com https://avatar-cdn.atlassian.com https://bitbucket.org https://bitbucket-assetroot.s3.amazonaws.com https://bitbucket.org https://i0.wp.com https://*.typekit.net https://js.intercomcdn.com https://static.intercomcdn.com https://uploads.intercomcdn.com https://analytics.twitter.com https://t.co https://www.facebook.com https://static.intercomassets.com; media-src 'self' https://js.intercomcdn.com/ https://static.intercomassets.com; |
ETag | W/"3fb1-29+kuK+wuC4IUILoIwXJCg" |
set-cookie | connect.sid=s%3AxZh-wLonaK1P1JYVDhj_DhZ5_qtjWdFg.jZBeHyloUGOZxwFFSwdzVs7YMTSiXssAuM788YpTNH0; Path=/; HttpOnly |
Content-Encoding | gzip |