Server | Apache |
Strict-Transport-Security | max-age=16070400; includeSubDomains |
Last-Modified | Sun, 18 Feb 2018 21:55:03 GMT |
Vary | Accept-Encoding |
Content-Encoding | gzip |
Cache-Control | max-age=0 |
Expires | Mon, 19 Feb 2018 04:43:29 GMT |
EN-User | e62061 |
X-UA-Compatible | IE=edge |
P3P | policyref="/w3c/p3p.xml", CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT" |
X-Frame-Options | SAMEORIGIN |
Content-Security-Policy | upgrade-insecure-requests |
Content-Security-Policy-Report-Only | default-src 'self' ws://127.0.0.1:35729 ws://localhost:3000 fbrpc://call https://*.google-analytics.com https://*.zopim.com wss://*.zopim.com https://*.ekomi.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.google-analytics.com https://*.googleapis.com https://*.googletagmanager.com https://d2wy8f7a9ursnm.cloudfront.net https://*.zopim.com https://*.ekomi.com https://*.facebook.net https://*.amazonaws.com https://*.googleadservices.com; style-src 'self' data: 'unsafe-inline' https://*.googleapis.com https://*.fonts.net https://*.ekomi.com https://*.amazonaws.com; img-src 'self' data: https://*.google-analytics.com https://*.googleapis.com https://*.gstatic.com https://notify.bugsnag.com https://*.gravatar.com https://*.zopim.com https://*.zopim.io https://*.ekomi.com https://*.facebook.com https://*.amazonaws.com https://*.doubleclick.net https://*.google.com https://*.google.at; font-src 'self' data: https://*.gstatic.com https://*.fonts.net https://*.zopim.com https://*.amazonaws.com; child-src 'self' https://*.joomunited.com; frame-src 'self' https://*.facebook.com; object-src 'self'; report-uri https://csp.spinnwerk.at https://spinnwerk.report-uri.io/r/default/csp/reportOnly |
X-Content-Type-Options | nosniff |
X-XSS-Protection | 1; mode=block |
Keep-Alive | timeout=5, max=392 |
Connection | Keep-Alive |
Content-Type | text/html; charset=UTF-8 |