Server | nginx/1.4.6 (Ubuntu) |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
X-Frame-Options | SAMEORIGIN |
Access-Control-Allow-Origin | * |
Access-Control-Allow-Headers | Origin, X-Requested-With, Content-Type, Accept |
Content-Security-Policy | default-src 'self' ws://localhost:3001; script-src 'unsafe-eval' 'unsafe-inline' *.google-analytics.com *.gstatic.com https://*.cloudflare.com *.cloudflare.com https://*.gitter.im https://*.cdnjs.com *.cdnjs.com https://*.jsdelivr.com *.jsdelivr.com *.twimg.com https://*.twimg.com vimeo.com 'self' ws://localhost:3001; connect-src vimeo.com 'self' ws://localhost:3001; style-src 'unsafe-inline' *.gstatic.com *.googleapis.com *.bootstrapcdn.com https://*.bootstrapcdn.com *.cloudflare.com https://*.cloudflare.com 'self' ws://localhost:3001; font-src *.cloudflare.com https://*.cloudflare.com *.bootstrapcdn.com *.googleapis.com *.gstatic.com https://*.bootstrapcdn.com 'self' ws://localhost:3001; img-src * data:; media-src *.bitly.com *.amazonaws.com *.twitter.com 'self' ws://localhost:3001; frame-src *.gitter.im *.gitter.im https: *.vimeo.com *.twitter.com *.ghbtns.com *.freecatphotoapp.com freecodecamp.github.io 'self' ws://localhost:3001 |
ETag | W/"3298-t63UJOjuueKxKpaLBOEkKQ" |
set-cookie | connect.sid=s%3AW4B27X7Obfr5zydZoygqf16YrIstF0Cs.a97mWoh8AXtNUAB%2BrGpMAS4%2F%2F5iyQbxIO6IRpQ9iCsc; Path=/; HttpOnly |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Strict-Transport-Security | max-age=15768000 |