Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Frame-Options | SAMEORIGIN |
X-Powered-By | Nette Framework |
Vary | X-Requested-With,Accept-Encoding |
Content-Security-Policy | default-src 'none'; script-src 'self' 'unsafe-inline' www.google-analytics.com connect.facebook.net *.smartlook.com; connect-src 'self' www.google-analytics.com *.smartlook.com; img-src 'self' www.google-analytics.com www.facebook.com; style-src 'self' 'unsafe-inline' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; manifest-src 'self'; frame-src www.facebook.com staticxx.facebook.com; |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
Expect-CT | max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" |
Server | cloudflare |
CF-RAY | 3e72a5047cab3fc5-YUL |
Content-Encoding | gzip |