Server | nginx |
Content-Type | text/html; charset=UTF-8 |
Transfer-Encoding | chunked |
Connection | keep-alive |
Vary | Accept-Encoding |
X-Pj-Cache-Status | hit |
Strict-Transport-Security | max-age=31536000; includeSubDomains; preload |
X-Frame-Options | SAMEORIGIN |
X-XSS-Protection | 1; mode=block |
X-Content-Type-Options | nosniff |
Access-Control-Allow-Origin | * |
Content-Security-Policy | default-src 'self' https: estaticos.sterm.org; img-src 'self' https: estaticos.sterm.org data: https: *.gravatar.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' om.intersindicalrm.org estaticos.sterm.org www.gstatic.com www.google.com/recaptcha/ cdn.polyfill.io ajax.googleapis.com connect.facebook.net *.issuu.com cdn.ampproject.org; style-src 'self' 'unsafe-inline' https: fonts.googleapis.com estaticos.sterm.org ; font-src 'self' data: https: fonts.googleapis.com themes.googleusercontent.com; object-src 'self' estaticos.sterm.org blob:;media-src 'self' estaticos.sterm.org blob:;upgrade-insecure-requests; base-uri https://*.intersindicalrm.org |
Public-Key-Pins-Report-Only | pin-sha256="Vjs8r4z+80wjNcr1YKepWQboSIRi63WsWXhIMN+eWys=";pin-sha256="ztQ5AqtftXtEIyLcDhcqT7VfcXi4CPlOeApv1sxr2Bg="; max-age=2592000; includeSubDomains |
X-Page-Speed | 1.13.35.2-0 |
Cache-Control | max-age=0, no-cache |
Content-Encoding | gzip |