Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Server | nginx |
Vary | Accept-Encoding |
x-frame-options | SAMEORIGIN |
Cache-Control | max-age=0, must-revalidate, no-store, nocache, private |
Pragma | no-cache |
Expires | Sun, 02 Jan 1990 00:00:00 GMT |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Strict-Transport-Security | max-age=63072000; includeSubDomains; preload |
Content-Security-Policy | default-src 'self' https://www.medcrowd.com:443 ; media-src 'self' https://medcrowd-ldn-production.s3.eu-west-2.amazonaws.com; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com:443 https://static.getclicky.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.pusher.com https://*.getclicky.com https://*.clicky.com https://clicky.com; img-src 'self' data: https://www.gravatar.com:443 https://medcrowd-ldn-production.s3.amazonaws.com:443 https://i2.wp.com https://static.getclicky.com; font-src https://fonts.gstatic.com:443 https://www.medcrowd.com:443; connect-src https://www.medcrowd.com https://*.pusher.com wss://*.pusher.com; |
Referrer-Policy | same-origin |
Content-Encoding | gzip |