Content-Type | text/html;charset=utf-8 |
Connection | keep-alive |
Accept-Ranges | bytes |
Age | 3611 |
Cache-Control | public, must-revalidate, max-age=3600, no-cache="set-cookie" |
Content-Encoding | gzip |
Content-Language | en-us |
Content-Security-Policy | default-src 'self' https:; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: 'unsafe-inline'; img-src 'self' https: data:; font-src 'self' https: data:; connect-src 'self' https: https://api.pusherapp.com wss://ws.pusherapp.com; report-uri //code.org/https/mixed-content; frame-ancestors 'self' *.disney.com |
Status | 200 OK |
Strict-Transport-Security | max-age=31536000 |
Via | 1.1 varnish-v4, 1.1 09de3b4e9513d0065d53c188739ddba2.cloudfront.net (CloudFront) |
X-Content-Type-Options | nosniff |
X-Frame-Options | |
X-Varnish | 64669965 59938146 |
X-Varnish-Cache | HIT |
X-Varnish-Node | frontend-b01 |
X-XSS-Protection | 1; mode=block |
Vary | Accept-Language,Cookie,Accept-Encoding |
X-Cache | Miss from cloudfront |
X-Amz-Cf-Id | f5qrV8L4Viu8UXW5hqaVI48wcGfWlPOoGhfLtmS3dnZ65EC7naLcxA== |