Cache-Control | no-cache, no-store, max-age=0, must-revalidate |
Content-Encoding | gzip |
Content-Language | en-US |
Content-Security-Policy | default-src *; script-src 'self' *.sharethis.com www.google.com www.google-analytics.com analytics.google.com *.gstatic.com https://maps.googleapis.com ajax.googleapis.com *.zendesk.com *.facebook.net d2wy8f7a9ursnm.cloudfront.net https://d10lpsik1i8c69.cloudfront.net https://settings.luckyorange.net https://geo.luckyorange.net https://ping.luckyorange.net https://cs.luckyorange.net https://cert.api2.heartlandportico.com https://api.heartlandportico.com https://api2.heartlandportico.com www.googletagmanager.com tagmanager.google.com;style-src 'self' 'unsafe-inline' *; img-src 'self' data: *.dimby.com *.sharethis.com s3.amazonaws.com www.google-analytics.com *.zendesk.com https://csi.gstatic.com https://maps.gstatic.com maps.googleapis.com https://www.facebook.com notify.bugsnag.com stats.g.doubleclick.net *.google.com www.gstatic.com ssl.gstatic.com; frame-src *.google.com assets.zendesk.com eneighbors.zendesk.com https://www.youtube.com https://player.vimeo.com http://staticxx.facebook.com https://staticxx.facebook.com https://www.facebook.com https://d10lpsik1i8c69.cloudfront.net https://hps.github.io; child-src *.google.com assets.zendesk.com eneighbors.zendesk.com https://www.youtube.com https://player.vimeo.com staticxx.facebook.com www.facebook.com d10lpsik1i8c69.cloudfront.net https://hps.github.io;font-src fonts.gstatic.com 'self' data:; |
Content-Type | text/html;charset=UTF-8 |
Expires | 0 |
Pragma | no-cache |
Server | Apache-Coyote/1.1 |
Strict-Transport-Security | max-age=63072000; includeSubdomains; preload, max-age=31536000 ; includeSubDomains |
Vary | Accept-Encoding |
X-Content-Type-Options | nosniff, nosniff |
X-Frame-Options | DENY, DENY |
X-Webkit-CSP | default-src *; script-src 'self' *.sharethis.com www.google.com www.google-analytics.com analytics.google.com *.gstatic.com https://maps.googleapis.com ajax.googleapis.com *.zendesk.com *.facebook.net d2wy8f7a9ursnm.cloudfront.net https://d10lpsik1i8c69.cloudfront.net https://settings.luckyorange.net https://geo.luckyorange.net https://ping.luckyorange.net https://cs.luckyorange.net https://cert.api2.heartlandportico.com https://api.heartlandportico.com https://api2.heartlandportico.com www.googletagmanager.com tagmanager.google.com;style-src 'self' 'unsafe-inline' *; img-src 'self' data: *.dimby.com *.sharethis.com s3.amazonaws.com www.google-analytics.com *.zendesk.com https://csi.gstatic.com https://maps.gstatic.com maps.googleapis.com https://www.facebook.com notify.bugsnag.com stats.g.doubleclick.net *.google.com www.gstatic.com ssl.gstatic.com; frame-src *.google.com assets.zendesk.com eneighbors.zendesk.com https://www.youtube.com https://player.vimeo.com http://staticxx.facebook.com https://staticxx.facebook.com https://www.facebook.com https://d10lpsik1i8c69.cloudfront.net https://hps.github.io; child-src *.google.com assets.zendesk.com eneighbors.zendesk.com https://www.youtube.com https://player.vimeo.com staticxx.facebook.com www.facebook.com d10lpsik1i8c69.cloudfront.net https://hps.github.io;font-src fonts.gstatic.com 'self' data:; |
X-XSS-Protection | 1; mode=block |
transfer-encoding | chunked |
Connection | keep-alive |