Server | nginx |
Content-Type | text/html; charset=utf-8 |
Connection | keep-alive |
Expires | Thu, 19 Nov 1981 08:52:00 GMT |
Pragma | no-cache |
Content-Language | de |
Cache-Control | private |
Vary | Accept-Encoding |
Content-Encoding | gzip |
X-Frame-Options | sameorigin |
x-xss-protection | 1; mode=block |
x-content-type-options | nosniff |
strict-transport-security | max-age=31556926 |
content-security-policy | default-src 'self'; img-src 'self' analytics.spd.de; font-src 'self' data:; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-eval' 'unsafe-inline' api.spendino.de storify.com analytics.spd.de; frame-src 'self' http://schulz2017.campaigningtools.de https://docs.google.com https://goo.gl https://ltwbw-dpa-electionslive.s3.amazonaws.com https://ltwst-dpa-electionslive.s3.amazonaws.com https://ltwrp-dpa-electionslive.s3.amazonaws.com https://ltwmv-dpa-electionslive.s3.amazonaws.com https://ltwbe-dpa-electionslive.s3.amazonaws.com analytics.spd.de w.soundcloud.com player.vimeo.com www.youtube.com www.youtube-nocookie.com api.spendino.de storify.com streaming.b1group.de https://www.blitzvideoserver.de https://api.spd.de https://login.spd.de https://streaming.b1group.de https://prezi.com; frame-ancestors 'self' https://login.spd.de |
x-content-security-policy | default-src 'self'; img-src 'self' analytics.spd.de; font-src 'self'; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-eval' 'unsafe-inline' api.spendino.de storify.com analytics.spd.de; frame-src 'self' http://schulz2017.campaigningtools.de https://docs.google.com https://goo.gl https://ltwrp-dpa-electionslive.s3.amazonaws.com https://ltwst-dpa-electionslive.s3.amazonaws.com https://ltwrp-dpa-electionslive.s3.amazonaws.com https://ltwmv-dpa-electionslive.s3.amazonaws.com https://ltwbe-dpa-electionslive.s3.amazonaws.com analytics.spd.de w.soundcloud.com player.vimeo.com www.youtube.com www.youtube-nocookie.com api.spendino.de storify.com streaming.b1group.de https://www.blitzvideoserver.de https://api.spd.de https://login.spd.de https://streaming.b1group.de https://prezi.com; frame-ancestors 'self' https://login.spd.de |
X-CACHE | MISS |