Server | nginx |
Content-Type | text/html; charset=utf-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
X-ShopId | 11951382 |
X-ShardId | 5 |
Content-Language | en |
Content-Encoding | gzip |
Content-Security-Policy-Report-Only | default-src 'self' https:; connect-src 'self' https: wss:; font-src 'self' https: blob: data:; frame-src 'self' https: blob: data: shopify-pos:; img-src 'self' https: blob: data:; media-src 'self' https: blob: data:; object-src 'self' https: blob: data:; script-src 'self' https: 'unsafe-inline' 'unsafe-eval'; style-src 'self' https: 'unsafe-inline'; frame-ancestors riotsociety.com; report-uri /csp-report/4ad12deb-a0e4-4379-91f7-2616d85d250c?source%5Baction%5D=password&source%5Bcontroller%5D=storefront_section%2Fstorefront&source%5Bsection%5D=storefront; |
X-XSS-Protection | 1; mode=block; report=/xss-report/4ad12deb-a0e4-4379-91f7-2616d85d250c?source%5Baction%5D=password&source%5Bcontroller%5D=storefront_section%2Fstorefront&source%5Bsection%5D=storefront |
ETag | cacheable:6f324956c9c1b7704f13757c2242e4a9 |
X-Alternate-Cache-Key | cacheable:3d933398396dbd82a558e68bbc9db401 |
X-Cache | hit, server |
P3P | CP="NOI DSP COR NID ADMa OPTa OUR NOR" |
X-Dc | ash,chi2 |
X-Download-Options | noopen |
X-Permitted-Cross-Domain-Policies | none |
X-Request-ID | 4ad12deb-a0e4-4379-91f7-2616d85d250c |
X-Content-Type-Options | nosniff, nosniff, nosniff |