Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding, Cookie |
P3P | CP="ALL DSP COR PSAa PSDa OUR NOR ONL UNI COM NAV" |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
X-Frame-Options | SAMEORIGIN, SAMEORIGIN |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Content-Security-Policy | default-src 'self'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://code.jquery.com:* https://cdnjs.cloudflare.com:* https://maxcdn.bootstrapcdn.com:* https://cdn.mathjax.org:*; img-src 'self'; style-src 'self' 'unsafe-inline' https://maxcdn.bootstrapcdn.com:*; font-src 'self' https://maxcdn.bootstrapcdn.com:* https://cdn.mathjax.org:*; frame-src 'none'; object-src 'none' |
Content-Encoding | gzip |