Server | nginx/1.11.10 |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Powered-By | Express |
Content-Security-Policy | default-src 'self'; script-src 'self' 'sha256-ZoSu5DrVGI+NxjPVGFvO8VJVbQCJ7nNEgWxHSaJKslE=' 'sha256-/Z3fT/QbhnFFnJqNf2TFnhZPw46IAE9XozJqdWMDKZI='; img-src 'self' https://www.findx.com data:; style-src 'self' 'unsafe-inline'; font-src 'self' data:; child-src 'self' https://www.youtube.com; frame-src 'self' https://www.youtube.com; |
ETag | W/"16004-IlCgA5R5wocfJOwwoKy3CAhq+t0" |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Strict-Transport-Security | max-age=15724800; includeSubDomains; preload |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
Referrer-Policy | no-referrer-when-downgrade |
X-Content-Type-Options | nosniff |
Public-Key-Pins | pin-sha256="GQDgOQrJeFQpy7KtBI75PylwjmQUyDjSgzvqQuI/0Qc="; pin-sha256="XZkBmaZ3flScEeH/cvShiagjgEUH3gDNMydshA5tD+I="; pin-sha256="Scn4GlZH5V3zHwBf1E5jNUP48zAWKWO6VD1CqubEnII="; max-age=2592000 |
Access-Control-Allow-Credentials | true |
Access-Control-Allow-Methods | GET, POST, OPTIONS |
Access-Control-Allow-Headers | DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type |