Cache-Control | private, max-age=0, no-cache, no-store, must-revalidate |
Pragma | no-cache |
Expires | Thu, 01 Jan 1970 00:00:00 GMT |
X-Frame-Options | SAMEORIGIN |
Content-Security-Policy | block-all-mixed-content; referrer unsafe-url; report-uri https://www.massfi.se/cspReport.txt; |
Content-Security-Policy-Report-Only | script-src https://www.massfi.se https://m.massfi.se 'unsafe-inline' 'unsafe-eval' data: https://s1.thcdn.com https://s2.thcdn.com https://s3.thcdn.com https://s4.thcdn.com https://tagging.thehut.net https://tracking.thehut.net https://prf.audiencemanager.de https://bat.bing.com https://p.cpx.to https://sslwidget.criteo.com https://static.criteo.net https://widget.us.criteo.com https://widget.eu.criteo.com https://widget.as.criteo.com https://static.doubleclick.net https://www.dwin1.com https://connect.facebook.net https://www.google.com https://www.googletagmanager.com https://www.google-analytics.com https://www.googleadservices.com https://www.googletagservices.com https://gstatic.com https://static.hotjar.com https://script.hotjar.com https://*.lpsnmedia.net https://rum-static.pingdom.net https://cdn.trackjs.com https://*.tvsquared.com https://analytics.twitter.com https://platform.twitter.com https://static.ads-twitter.com https://fp.zenaps.com https://seal.digicert.com https://*.liveperson.net https://server.lon.liveperson.net https://lo.v.liveperson.net https://s.pinimg.com https://load.sumome.com https://*.kxcdn.com https://*.trustpilot.com https://www.youtube.com https://s.ytimg.com; report-uri https://www.massfi.se/cspReport.txt; |
Referrer-Policy | unsafe-url |
Keep-Alive | timeout=5, max=81 |
Connection | Keep-Alive |
Content-Type | text/html;charset=UTF-8 |
Content-Encoding | gzip |
Transfer-Encoding | chunked |