Content-Security-Policy | script-src 'self' https://www.googletagmanager.com/gtm.js https://tagmanager.google.com/debug https://tagmanager.google.com/debug/angular-bundle.js https://tagmanager.google.com/debug/debuguiApp.js https://www.google-analytics.com/analytics.js https://www.youtube.com/iframe_api https://s.ytimg.com/yts/jsbin/ https://www.googleadservices.com; style-src 'self' 'unsafe-inline' https://www.google.com https://fonts.googleapis.com/css http://fonts.googleapis.com/css |
Strict-Transport-Security | max-age=2592000; includeSubdomains |
X-Content-Type-Options | nosniff |
X-Frame-Options | DENY |
X-XSS-Protection | 1; mode=block |
Expires | Mon, 12 Feb 2018 05:49:32 GMT |
Cache-Control | public, max-age=60 |
ETag | "26286g" |
X-Cloud-Trace-Context | 4524198d46051febedafbfdae64fe774 |
Content-Type | text/html |
Content-Encoding | gzip |
Server | Google Frontend |
Alt-Svc | hq=":443"; ma=2592000; quic=51303431; quic=51303339; quic=51303338; quic=51303337; quic=51303335,quic=":443"; ma=2592000; v="41,39,38,37,35" |
Transfer-Encoding | chunked |