Server | Apache |
X-Drupal-Cache | MISS |
Expires | Sun, 19 Nov 1978 05:00:00 GMT |
Cache-Control | no-cache, must-revalidate |
X-Content-Type-Options | nosniff, nosniff |
Content-Security-Policy | default-src 'self'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://www.google.com https://www.gstatic.com https://code.jquery.com https://www.googletagmanager.com https://brand-ecommerce-assets.fusepump.com https://www.google-analytics.com https://cdn.krxd.net https://beacon.krxd.net; object-src 'self'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fonts.googleapis.com https://brand-ecommerce-assets.fusepump.com; img-src 'self' data: https://brand-ecommerce-assets.fusepump.com https://px.pump.to https://www.google-analytics.com https://beacon.krxd.net; media-src 'self'; frame-src 'self' https://cdn.jsdelivr.net/ https://www.google.com/recaptcha https://www.youtube.com https://cdn.krxd.net; font-src 'self' 'unsafe-inline' data: https://cdn.jsdelivr.net https://fonts.gstatic.com; connect-src 'self' https://brand-ecommerce-api.fusepump.com; report-uri /admin/config/system/seckit/csp-report |
X-Content-Security-Policy | default-src 'self'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://www.google.com https://www.gstatic.com https://code.jquery.com https://www.googletagmanager.com https://brand-ecommerce-assets.fusepump.com https://www.google-analytics.com https://cdn.krxd.net https://beacon.krxd.net; object-src 'self'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fonts.googleapis.com https://brand-ecommerce-assets.fusepump.com; img-src 'self' data: https://brand-ecommerce-assets.fusepump.com https://px.pump.to https://www.google-analytics.com https://beacon.krxd.net; media-src 'self'; frame-src 'self' https://cdn.jsdelivr.net/ https://www.google.com/recaptcha https://www.youtube.com https://cdn.krxd.net; font-src 'self' 'unsafe-inline' data: https://cdn.jsdelivr.net https://fonts.gstatic.com; connect-src 'self' https://brand-ecommerce-api.fusepump.com; report-uri /admin/config/system/seckit/csp-report |
X-WebKit-CSP | default-src 'self'; script-src 'self' data: 'unsafe-inline' 'unsafe-eval' https://cdn.jsdelivr.net https://www.google.com https://www.gstatic.com https://code.jquery.com https://www.googletagmanager.com https://brand-ecommerce-assets.fusepump.com https://www.google-analytics.com https://cdn.krxd.net https://beacon.krxd.net; object-src 'self'; style-src 'self' 'unsafe-inline' https://cdn.jsdelivr.net https://fonts.googleapis.com https://brand-ecommerce-assets.fusepump.com; img-src 'self' data: https://brand-ecommerce-assets.fusepump.com https://px.pump.to https://www.google-analytics.com https://beacon.krxd.net; media-src 'self'; frame-src 'self' https://cdn.jsdelivr.net/ https://www.google.com/recaptcha https://www.youtube.com https://cdn.krxd.net; font-src 'self' 'unsafe-inline' data: https://cdn.jsdelivr.net https://fonts.gstatic.com; connect-src 'self' https://brand-ecommerce-api.fusepump.com; report-uri /admin/config/system/seckit/csp-report |
X-XSS-Protection | 1; mode=block |
X-Frame-Options | SAMEORIGIN |
Strict-Transport-Security | max-age=2592000;, max-age=1000 |
Content-Language | es |
Connection | close |
Transfer-Encoding | chunked |
Content-Type | text/html; charset=utf-8 |
X-Iinfo | 9-47873943-47873985 NNNN CT(15 15 0) RT(1519681084319 237) q(0 0 0 -1) r(6 6) U2 |
X-CDN | Incapsula |
Content-Encoding | gzip |