Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-Dns-Prefetch-Control | off |
X-Frame-Options | SAMEORIGIN |
X-Download-Options | noopen |
X-Content-Type-Options | nosniff |
X-Xss-Protection | 1; mode=block |
Content-Security-Policy | default-src 'self' http: https:; script-src 'self' cdn.polyfill.io platform.twitter.com ajax.googleapis.com/ajax/libs/webfont/ https://ssl.google-analytics.com/ga.js; style-src 'self' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; img-src 'self' data: https:; frame-ancestors 'none'; object-src |
X-Content-Security-Policy | default-src 'self' http: https:; script-src 'self' cdn.polyfill.io platform.twitter.com ajax.googleapis.com/ajax/libs/webfont/ https://ssl.google-analytics.com/ga.js; style-src 'self' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; img-src 'self' data: https:; frame-ancestors 'none'; object-src |
X-Webkit-Csp | default-src 'self' http: https:; script-src 'self' cdn.polyfill.io platform.twitter.com ajax.googleapis.com/ajax/libs/webfont/ https://ssl.google-analytics.com/ga.js; style-src 'self' fonts.googleapis.com; font-src 'self' fonts.gstatic.com; img-src 'self' data: https:; frame-ancestors 'none'; object-src |
Via | 1.1 vegur |
Strict-Transport-Security | max-age=15552000; preload |
Expect-CT | max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" |
Server | cloudflare |
CF-RAY | 3efe8547ec0c3f9b-YUL |
Content-Encoding | gzip |