Content-Type | text/html |
Last-Modified | Tue, 04 Oct 2016 05:43:49 GMT |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
Content-Security-Policy | default-src *.tawk.to www.facebook.com 'self' ; script-src 'self' 'unsafe-inline' 'unsafe-eval' www.facebook.com https://embed.tawk.to https://bam.nr-data.net https://js-agent.newrelic.com https://apis.google.com https://www.gstatic.com https://appcenter.intuit.com https://www.google.com https://www.google-analytics.com https://ajax.googleapis.com http://local.saasant.com; img-src 'self' https://*.tawk.to ssl.comodo.com https://appcenter.intuit.com https://www.google-analytics.com https://www.sandbox.paypal.com https://www.paypal.com http://local.saasant.com https://ssl.gstatic.com data:; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://appcenter.intuit.com http://local.saasant.com ; font-src 'self' https://fonts.gstatic.com data:; frame-src 'self' https://*.facebook.com https://*.tawk.to https://mp.liferay.com https://www.google.com https://youtu.be https://www.youtube.com ; connect-src 'self' wss://*.tawk.to https://*.tawk.to https://ssl.google-analytics.com https://appcenter.intuit.com https://local.saasant.com https://www.google.com https://www.google-analytics.com |
Strict-Transport-Security | max-age=1800; includeSubDomains; preload |
Server | nginx, 1.2.3 |
Content-Encoding | gzip |